SignSecureChannel
HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters
Data type |
Range |
Default value |
|---|---|---|
REG_DWORD |
0 | 1 |
1 |
Description
Determines whether outgoing secure channel traffic is signed. This entry is used when negotiating the conditions of a secure channel with a domain controller.
Channel traffic security is determined jointly by the value of this entry and the values of the RequireStrongKeyrequiresignorseal and sealsecurechannel entries.
This entry is used only when the value of requiresignorseal is 0. Otherwise, the system requires that traffic at least be signed, and it does not consult this entry. Also, because encryption is more secure than signing, this entry is superceded when the value of sealsecurechannel is 1.
Value |
Meaning |
|---|---|
0 |
Outgoing traffic on a secure channel need not be signed. |
1 |
Outgoing traffic on a secure channel must be signed. |
.gif)
Note
Windows 2000 adds this entry to the registry when you install the system for the first time or when you change the default value. If you upgrade from Windows NT 4.0 or earlier, the entry does not appear in the registry, but it is still in effect on your system.
Related Entries
.gif)