ºÃÔ¡ÒáÒÃà¢éÒÊÙèÃкºÊØ·¸Ô º¹ Windows Server 2008 áÅеÑǤǺ¤ØÁâ´àÁ¹ Windows Server 2008 R2 äÁè͹حҵãËéãªé¡ÒÃà¢éÒÃËÑÊ algorithms à¡èÒ·Õèà¢éҡѹä´é¡Ñº Windows NT 4.0 â´Â¤èÒàÃÔèÁµé¹

ËÁÒÂà˵Ø:windows NT 4.0 à»ç¹Í´Õµ Microsoft ÃͺÃÐÂÐàÇÅÒǧ¨ÃªÕÇÔµ·ÕèʹѺʹع ʶҹ¡ÒóìµèÒ§ æ ·Õèà¡ÕèÂÇ¢éͧ¡Ñº Windows NT 4.0 äÁèä´é¶Ù¡·´Êͺ áÅÐäÁèʹѺʹع ¢éÍÁÙŵèÍ仹Õé¨ÐãËé¢éÍÁÙÅà·èÒ¹Ñé¹ áÅÐãËéäÇéà¾×èÍãËé§èÒµèÍ¡ÒÃà»ÅÕè¹ÀÒ¾ä´é§èÒ¢Ö鹨ҡÃкº Windows NT 4.0 ÊÓËÃѺ¢éÍÁÙÅà¾ÔèÁàµÔÁà¡ÕèÂǡѺ Microsoft ʹѺʹع¹âºÒÂǧ¨ÃªÕÇÔµ àÂÕèÂÁªÁàÇçºä«µìµèÍ仹Õé¢Í§ Microsoft:àÁ×èͤÍÁ¾ÔÇàµÍÃì·Õèãªé Windows NT 4.0 ¾ÂÒÂÒÁ·Õè¨ÐãªéºÃÔ¡Òà NETLOGON ÊÃéҧʶҹշÕèãªé㹡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑÂä»Âѧ¡ÒõÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 µéͧ¡ÒôÓà¹Ô¹¡ÒÃÍÒ¨ÅéÁàËÅÇ ÎÒÃì´áÇÃìËÃ×Í«Í¿µìáÇÃì·ÕèÍÒ¨¨ÐäÁèÊÒÁÒöÊÃéҧʶҹշÕèãªé㹡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑÂä»ÂѧµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¶éÒÎÒÃì´áÇÃìËÃ×Í«Í¿µìáÇÃìãªé algorithms à¢éÒÃËÑÊ·Õèãªéã¹ Windows NT 4.0

ã¹Ê¶Ò¹¡ÒóìÊÁÁµÔ¹Õé ¤Ø³ÍÒ¨¾ºÍÒ¡ÒõèÍ仹Õé

ÍÒ¡ÒÃ 1

¤Ø³äÁèÊÒÁÒöà¢éÒÊÙèÃкºâ´àÁ¹¨Ò¡¤ÍÁ¾ÔÇàµÍÃì·Õèãªé Windows NT 4.0 ·ÕèãËéºÃÔ¡Òà â´ÂµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¢Öé¹ÍÂÙè¡ÑºÇèÒ¢éÍÁÙŢͧºÑ­ªÕ¡ÒÃà¢éÒÊÙèÃкºâ´àÁ¹ÁÕ᤺¹¤ÍÁ¾ÔÇàµÍÃì·Õèãªé Windows NT 4.0 ¤Ø³ÍÒ¨ä´éÃѺ¢éͤÇÒÁáÊ´§¢éͼԴ¾ÅÒ´µèÍ仹ÕéÍÂèÒ§ã´ÍÂèҧ˹Öè§:

¢éͤÇÒÁáÊ´§¢éͼԴ¾ÅÒ´ 1:à¡Ô´¢éͼԴ¾ÅÒ´ 2

ÍÒ¡ÒÃ 2

trusts ·ÕèÁÕÍÂÙèÃÐËÇèÒ§â´àÁ¹¢Í§ Windows NT 4.0 áÅÐâ´àÁ¹ Windows Server 2008 ÍÒ¨äÁè·Ó§Ò¹ àÊÃç¨àÃÕºÃéÍÂáÅéǤسÍÒ¨ÊÃéÒ§¤ÇÒÁ¹èÒàª×èͶ×Í·ÕèàÃÔèÁµé¹ ÍÂèÒ§äáçµÒÁ àÁ×èͤس¾ÂÒÂÒÁ·Õè¨ÐµÃǨÊͺ¤ÇÒÁ¹èÒàª×èͶ×Í·Õè â´ÂãªéÊá¹ç»ÍÔ¹ Domain.msc Microsoft Management Console (MMC) ¡ÒõÃǨÊͺ¡ÒÃÍÒ¨ÅéÁàËÅÇ ¹Í¡¨Ò¡¹Õé ¤Ø³ÍÒ¨ä´éÃѺ¢éͤÇÒÁáÊ´§¢éͼԴ¾ÅÒ´µèÍ仹Õé::

ÍÒ¡ÒÃ 3

ä¤Åà͹µì SAMBA SMB äÁèÊÒÁÒö·Ó¡ÒôÓà¹Ô¹¡ÒÃà¢éÒÃèÇÁâ´àÁ¹ä»ÂѧµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ËÃ×Í ä¤Åà͹µìºÅçÍ¡¢éͤÇÒÁà«ÔÃì¿àÇÍÃì¢Í§ SAMBA (SMB) äÁèÊÒÁÒöÊÃéҧʶҹշÕèãªé㹡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑÂä»ÂѧµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008

¹Í¡¨Ò¡¹Õé µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ·Õè»ÃÐÁÇżšÒÃÃéͧ¢ÍʶҹդÇÒÁ»ÅÍ´ÀÑ¡ÅѺÃËÑÊ¢éͼԴ¾ÅÒ´µèÍ仹Õé:ËÁÒÂà˵Ø:¢éͼԴ¾ÅÒ´ "STATUS_DOWNGRADE_DETECTED" ÁÕËÅÒÂÊÒà˵طÕè¹èÒÃÒ¡ ´Ñ§¹Ñé¹ ¢éͼԴ¾ÅÒ´¹ÕéäÁè¨Óà»ç¹µéͧÃкØÇèÒ ¤Ø³¾ºÍÒ¡Òà 3

ÍÒ¡ÒÃ 4

ÍØ»¡Ã³ìà¡çº¢éÍÁÙÅ SMB ÍÒ¨äÁèÊÒÁÒöãªé¡ÒÃà¢éÒÃËÑÊÍè͹ algorithms ÊÃéҧʶҹշÕèãªé㹡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑÂä»ÂѧµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008

ËÁÒÂà˵Ø:ÍØ»¡Ã³ìà¡çº¢éÍÁÙŢͧ smb ¨ÐàÃÕ¡ÇèÒÍØ»¡Ã³ìà¡çº¢éÍÁÙŢͧ IP

㹤Ǻ¤ØÁâ´àÁ¹ authenticating ¢éͼԴ¾ÅÒ´µèÍ仹Õé¶Ù¡ºÑ¹·Ö¡äÇé㹺ѹ·Ö¡¢Í§Ãкº:

¢éͼԴ¾ÅÒ´ 1ËÁÒÂà˵Ø:AuDomainNameáÊ´§ª×èͧ͢µÑǤǺ¤ØÁâ´àÁ¹ authenticating

¢éͼԴ¾ÅÒ´·Õè 2
ã¹¢³Ð¹Õé ¤Ø³¾ºÍÒ¡Ò÷Õè 4 ã¹ÍØ»¡Ã³ìà¡çº¢éÍÁÙÅ SMB µèÍ仹Õé:

• Celerra EMC

µÔ´µèͼÙé¼ÅÔµÍØ»¡Ã³ìà¾×èÍ´ÙÇèÒ ¡ÒûÃѺ»ÃاÊÓËÃѺ»Ñ­ËÒ¹Õé¨Ð¾ÃéÍÁãªé§Ò¹

¹Í¡¨Ò¡¹Õé ¤Ø³ÍÒ¨äÁèÊÒÁÒöÊÃéҧʶҹշÕèãªé㹡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀѨҡà«ÔÃì¿àÇÍÃì¢Ñé¹ÊÙ§ Hewlett-Packard (HP) ÊÓËÃѺ OpenVMS ä»ÂѧµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 â´Â੾ÒÐÍÂèÒ§ÂÔè§ µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¡ÅѺÃËÑÊ¢éͼԴ¾ÅÒ´µèÍ仹Õéà¾×èÍÃéͧ¢Í OpenVMS NetrServerAuthenticate:ËÁÒÂà˵Ø:¢éͼԴ¾ÅÒ´ "STATUS_DOWNGRADE_DETECTED" ÁÕËÅÒÂÊÒà˵طÕè¹èÒÃÒ¡ ´Ñ§¹Ñé¹ ¢éͼԴ¾ÅÒ´¹ÕéäÁè¨Óà»ç¹µéͧÃкØÇèÒ ¤Ø³¾ºÍÒ¡Òà 4

ÍÒ¡ÒÃ 5

µÑǤǺ¤ØÁâ´àÁ¹ËÅÑ¡ Windows NT 4.0 (PDC) äÁèÊÒÁÒöÊÃéÒ§¢éͤÇÒÁäÇéÇÒ§ã¨ÀÒ¹͡ÃÐËÇèÒ§µÑÇàͧáÅÐ emulator Âѧ PDC ·Õè¡ÓÅѧàÃÕ¡ãªé Windows Server 2008 R2 à«ÔÃì¿àÇÍÃì·Õèãªé Windows Server 2008 R2 äÁèÊÒÁÒöà¢éÒ¶Ö§ â´Âãªé¤ÇÒÁ¹èÒàª×èͶ×ͧ͢â´àÁ¹·Õèãªé Windows NT 4.0 Windows NT 4.0 members that are in a Windows NT 4.0-based domain also cannot access domain controllers that are running Windows Server 2008 R2 by using a trust. This behavior occurs even if the trust was created between a PDC that is running Windows NT 4.0 and a PDC that is running Windows Server 2008 or Windows Server 2003.

The following errors are logged in the System log on a PDC that is running Windows NT 4.0 after the trust is created:

ª¹Ô´à˵ءÒóì: ¢éͼԴ¾ÅÒ´
áËÅ觷ÕèÁҢͧà˵ءÒóì: NETLOGON
»ÃÐàÀ·à˵ءÒóì: äÁèÁÕ
Event ID: 5722
Çѹ·Õè:<date></date>
àÇÅÒ:<time></time>
¼Ùéãªé: n/a
¤ÍÁ¾ÔÇàµÍÃì:<computer name=""></computer>
¤Ó͸ԺÒÂ: ¡ÒõÑ駤èÒà«ÊªÑ¹¨Ò¡¤ÍÁ¾ÔÇàµÍÃì<computer name=""></computer>¡ÒÃÃѺÃͧ¤ÇÒÁ¶Ù¡µéͧÅéÁàËÅÇ ª×èͧ͢ºÑ­ªÕ·Õè¶Ù¡ÍéÒ§¶Ö§ã¹°Ò¹¢éÍÁÙŤÇÒÁ»ÅÍ´ÀѹÕé<database name=""></database>. The following error occurred: Access is denied.

ª¹Ô´à˵ءÒóì: ¢éͼԴ¾ÅÒ´
áËÅ觷ÕèÁҢͧà˵ءÒóì: NETLOGON
»ÃÐàÀ·à˵ءÒóì: äÁèÁÕ
Event ID: 5721
Çѹ·Õè:<date></date>
àÇÅÒ:<time></time>
¼Ùéãªé: n/a
¤ÍÁ¾ÔÇàµÍÃì:<computer name=""></computer>
Description: The session setup to the Windows NT Domain Controller <unknown> for domain </unknown><database name=""></database>failed because the Windows NT domain controller does not have an account for the computer<computer name=""></computer>.

The following errors are logged in the System log on the PDC that is running Windows Server 2008 R2 after the trust is created:

ª¹Ô´à˵ءÒóì: ¢éͼԴ¾ÅÒ´
áËÅ觷ÕèÁҢͧà˵ءÒóì: NETLOGON
»ÃÐàÀ·à˵ءÒóì: äÁèÁÕ
ÃËÑÊà˵ءÒóì: 3210
Çѹ·Õè:<date></date>
àÇÅÒ:<time></time>M
¼Ùéãªé: n/a
¤ÍÁ¾ÔÇàµÍÃì:<computer name=""></computer>
Description: This computer could not authenticate with<computer name=""></computer>, a Windows domain controller for domain<domain></domain>, and therefore this computer might deny logon requests. This inability to authenticate might be caused by another computer on the same network using the same name or the password for this computer account is not recognized. If this message appears again, contact your system administrator.

When you try to validate the trust by using Domain.msc, you receive the following error message:¤Ø³ãªé¤ÍÁ¾ÔÇàµÍÃì·Õèãªé Windows NT 4.0 ÊÁÒªÔ¡ã¹â´àÁ¹·Õèãªé Windows NT 4.0 ¼èÒ¹¤ÇÒÁàª×èͶ×Í·Õè validated àÁ×èͤس¾ÂÒÂÒÁà¢éÒ¶Ö§·ÃѾÂҡ÷ÕèÍÂÙ躹µÑǤǺ¤ØÁâ´àÁ¹·Õè¡ÓÅѧàÃÕ¡ãªé Windows Server 2008 R2 ¤Ø³ä´éÃѺ¢éͤÇÒÁáÊ´§¢éͤÇÒÁáÊ´§¢éͼԴ¾ÅÒ´µèÍ仹Õé:

»Ñ­ËÒ¹Õéà¡Ô´¢Öé¹à¹×èͧ¨Ò¡¡Ò÷ӧҹ´Õ¿Íŵì¢Í§¡ÒÃ͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂã¹µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¹âºÒ¹ÕéÁÕ¡ÒáÓ˹´¤èÒà¾×èÍ»éͧ¡Ñ¹äÁèãËéãªé¡ÒÃà¢éÒÃËÑÊÍè͹ algorithms ÊÃéÒ§ªèͧÊÑ­­Ò³¡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑ NETLOGON µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 Ãкº»¯ÔºÑµÔ¡Òà Windows áÅÐä¤Åà͹µìÍ×è¹ æ

ÊÔè§ÊӤѭäÁèÊÒÁÒöÊÃéÒ§ trusts windows NT 4.0 ÃÐËÇèÒ§â´àÁ¹·Õèãªé Windows Server 2008 R2 áÅÐâ´àÁ¹·Õèãªé Windows NT 4.0 ¢Ñ鹵͹¡ÒÃá¡é»Ñ­ËÒ·Õèä´éÃѺ¡Òúѹ·Ö¡äÇé㹺·¤ÇÒÁ¹Õé¹Óä»ãªé¡Ñºà©¾ÒÐ Windows Server 2008 à»ÅÕè¹á»Å§¡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑÂã¹ Windows Server 2008 R2 »éͧ¡Ñ¹¤ÇÒÁ¹èÒàª×èͶ×ÍÃÐËÇèÒ§â´àÁ¹·Õèãªé Windows Server 2008 R2 áÅÐâ´àÁ¹·Õèãªé Windows NT 4.0 ÅѡɳСÒ÷ӧҹ¹Õéà¡Ô´¨Ò¡¡ÒÃÍ͡Ẻ

àÁ×è͵éͧ¡ÒÃá¡é䢻ѭËÒ¹Õé µÃǨÊͺãËéá¹èã¨ÇèÒ ¤ÍÁ¾ÔÇàµÍÃìä¤Åà͹µìãªé algorithms à¢éÒÃËÑÊ·Õèà¢éҡѹä´é¡Ñº Windows Server 2008 ¤Ø³ÍÒ¨µéͧ¡ÒÃÃéͧ¢Í¡ÒûÃѺ»Ãا«Í¿µìáÇÃì¨Ò¡¼Ùé¨Ñ´¨Ó˹èÒ¼ÅÔµÀѳ±ì

¶éҤسäÁèÊÒÁÒöµÔ´µÑé§â»Ãá¡ÃÁ»ÃѺ»Ãا«Í¿µìáÇÃìä´éà¹×èͧ¨Ò¡´Ñº¡ÒúÃÔ¡ÒèÐà¡Ô´¢Öé¹ ·ÓµÒÁ¢Ñ鹵͹àËÅèÒ¹Õé:

1. à¢éÒÊÙèÃкºã¹µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008
2. ¤ÅÔ¡àÃÔèÁ¡Ò÷ӧҹ¤ÅÔ¡àÃÕ¡ãªé»ÃÐàÀ·:gpmc.mscáÅéÇ ¤ÅÔ¡µ¡Å§.
3. 㹡ÒáÒèѴ¡ÒùâºÒ¡ÅØèÁ¤Í¹â«Å ¢ÂÒ¿ÍàÃʵì:DomainName¢ÂÒÂDomainName¢ÂÒµÑǤǺ¤ØÁâ´àÁ¹¤ÅÔ¡¢ÇÒ¹âºÒ¢ͧµÑǤǺ¤ØÁâ´àÁ¹àÃÔèÁµé¹áÅéÇ ¤ÅÔ¡á¡éä¢.
4. 㹡ÒõÑÇá¡é䢡ÒèѴ¡ÒùâºÒ¡ÅØèÁ¤Í¹â«Å ¢ÂÒ¡ÒáÓ˹´¤èÒ¤ÍÁ¾ÔÇàµÍÃì¢ÂÒ¹âºÒ¢ÂÒÂáÁèẺ¡ÒôÙáÅÃкº¢ÂÒÂÃкº:¤ÅÔ¡Net LogonáÅéÇ ¤ÅÔ¡Êͧ¤ÃÑé§Í¹Ø­ÒµãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0.
5. 㹡ÒäسÊÁºÑµÔ¡ÅèͧâµéµÍº ¤ÅÔ¡¡Ò÷Õèà»Ô´ãªé§Ò¹µÑÇàÅ×Í¡ áÅéǤÅÔ¡µ¡Å§.
   
   ËÁÒÂà˵Ø
   • â´Â¤èÒàÃÔèÁµé¹ ¡ÒÃäÁèÁÕ¡ÒáÓ˹´¤èÒÁÕ¡ÒõÑ駤èÒµÑÇàÅ×Í¡ÊÓËÃѺ¡ÒÃ͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂã¹Íͺà¨ç¡µìµèÍ仹Õé¢Í§¹âºÒ¡ÅØèÁ (GPO):
     • ¹âºÒÂâ´àÁ¹àÃÔèÁµé¹
     • ¹âºÒ¢ͧµÑǤǺ¤ØÁâ´àÁ¹àÃÔèÁµé¹
     • ¹âºÒ¤ÍÁ¾ÔÇàµÍÃì੾ÒзÕè
     â´Â¤èÒàÃÔèÁµé¹ ÅѡɳСÒ÷ӧҹÊÓËÃѺ¡ÒÃ͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂã¹µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¤×Íà¾×èÍ »éͧ¡Ñ¹¡ÒÃàª×èÍÁµèͨҡ¡ÒÃãªé¡ÒÃà¢éÒÃËÑÊ algorithms ·Õèãªéã¹ Windows NT 4.0 â´Â·Ò§â»Ãá¡ÃÁ ´Ñ§¹Ñé¹ à¤Ã×èͧÁ×Í·ÕèÃкءÒõÑ駤èÒ¹âºÒ·ÕèÁռŠ㹤ÍÁ¾ÔÇàµÍÃì·ÕèÁÕÊÁÒªÔ¡ ËÃ×Í º¹µÑǤǺ¤ØÁâ´àÁ¹ ¨ÐäÁèä´éµÃǨËÒ¡ÒÃ͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂàÇé¹áµèÇèҤسà»Ô´ãªé§Ò¹ä´é ËÃ×ͻԴãªé§Ò¹¹âºÒÂ
   • µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows 2000 Server áÅеÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2003 äÁèä´é͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂ: ´Ñ§¹Ñé¹ µÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Server 2008 pre-Windows ÂÍÁÃѺ¡ÒÃÃéͧ¢Í¡ÒÃʶҹդÇÒÁ»ÅÍ´ÀѨҡ¤ÍÁ¾ÔÇàµÍÃìä¤Åà͹µìáÁéÇèÒ¤ÍÁ¾ÔÇàµÍÃìä¤Åà͹µìãªé¡ÒÃà¢éÒÃËÑÊ algorithms à´ÔÁ·Õèãªéã¹ Windows NT 4.0 ¶éÒÁÕ¡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑ¡ÒÃÃéͧ¢Íʶҹն١»ÃÐÁÇżŠâ´ÂµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 à»ç¹ÃÐÂÐ æ ¤Ø³¨Ð¾º¼ÅÅѾ¸ì·ÕèÊÍ´¤Åéͧ¡Ñ¹
6. ¡ÒõԴµÑ駡ÒûÃѺ»Ãا«Í¿µìáÇÃì¢Í§ºÃÔÉÑ·Í×è¹·ÕèÊÒÁÒöá¡é䢻ѭËÒ ËÃ×ÍàÍÒ¤ÍÁ¾ÔÇàµÍÃìä¤Åà͹µì·Õèãªé algorithms à¢éÒÃËÑÊ·ÕèäÁèà¢éҡѹ
7. ·Ó«éÓ¢Ñ鹵͹·Õè 1 ¶Ö§ 4
8. 㹡ÒäسÊÁºÑµÔ¡ÅèͧâµéµÍº ¤ÅÔ¡¡Ò÷Õè»Ô´ãªé§Ò¹µÑÇàÅ×Í¡ áÅéǤÅÔ¡µ¡Å§.
   
   ÊÔè§ÊӤѭà¾×èÍà˵ؼŴéÒ¹¤ÇÒÁ»ÅÍ´ÀÑ ¤Ø³¤ÇõÑ駤èÒµÑÇàÅ×Í¡ÊÓËÃѺ¹âºÒ¹Õé¡ÅѺä»Âѧ·Õè»Ô´ãªé§Ò¹.

ÅѡɳСÒ÷ӧҹ¹Õéà¡Ô´¨Ò¡¡ÒÃÍ͡Ẻ

»Ñ­ËÒ·Õèà¡ÕèÂÇ¢éͧº¹¤ÍÁ¾ÔÇàµÍÃì·ÕèÃѹ Windows 2000 ËÃ×Í Windows ÃØè¹·ÕèãËÁè¡ÇèÒ

¤ÇÒÁÊÒÁÒö¢Í§¤ÍÁ¾ÔÇàµÍÃìä¤Åà͹µì·Õèãªé Windows 2000 ËÃ×Í Windows ÃØè¹·ÕèãËÁè¡ÇèÒ㹡ÒÃÊÃéÒ§ªèͧÊÑ­­Ò³¡ÒÃÃÑ¡ÉÒ¤ÇÒÁ»ÅÍ´ÀÑ¡ѺµÑǤǺ¤ØÁâ´àÁ¹·Õèãªé Windows Server 2008 ¨ÐäÁèä´éÃѺ¼Å¨Ò¡¡ÒÃ͹حҵãËéà¢éÒÃËÑÊ algorithms à¢éҡѹä´é¡Ñº Windows NT 4.0¹âºÒÂ: ÍÂèÒ§äáçµÒÁ àÁ×èÍä¤ÅàÍç¹µì¤ÍÁ¾ÔÇàµÍÃìàËÅèÒ¹Õéãªé¹Ñé¹NetJoinDomainfunction together with the NETSETUP_JOIN_UNSECURE join option against a Windows Server 2008-based domain controller, the domain controller returns the following error code:This problem occurs when the policy setting is·Õè»Ô´ãªé§Ò¹ËÃ×ÍäÁèÁÕ¡ÒáÓ˹´¤èÒ.

ËÁÒÂà˵Ø:The "STATUS_DOWNGRADE_DETECTED" error has multiple root causes. Therefore, this error does not necessarily indicate that you are experiencing this problem.

You may experience this problem on computers that are running the following operating systems:

• Windows 2000:
• Windows XP:
• Windows Server 2003
• The release version of Windows Vista

ËÁÒÂà˵Ø:Computers that are running Windows Vista with Service Pack 1 (SP1) or later versions of Windows Vista are not affected.

¡Ãкǹ¡ÒÃNetJoinDomainfunction is used together with the NETSETUP_JOIN_UNSECURE option in the following scenarios. (This function is also used in other scenarios.)

• You use Windows Deployment Services (WDS) or Remote Installation Services (RIS) to install a Windows operating system.
• You use the Active Directory Migration Tool (ADMT) to perform computer account migration of a Windows operating system.

The following hotfix package may be applied to computers that are running Windows XP or Windows Server 2003 to resolve this issue:

ÊÓËÃѺ¢éÍÁÙÅà¾ÔèÁàµÔÁà¡ÕèÂǡѺÇÔ¸Õ¡ÒÃà»Ô´ãªé§Ò¹¡Òúѹ·Ö¡¡ÒõÃǨá¡é¨Ø´º¡¾ÃèͧÊÓËÃѺºÃÔ¡Òà NETLOGON ¤ÅÔ¡ËÁÒÂàÅ¢º·¤ÇÒÁµèÍ仹Õéà¾×èÍ´Ùº·¤ÇÒÁã¹°Ò¹¤ÇÒÁÃÙé¢Í§ Microsoft:
ÊÓËÃѺ¢éÍÁÙÅà¾ÔèÁàµÔÁà¡ÕèÂǡѺ¡ÒÃNetJoinDomain¿Ñ§¡ìªÑ¹ ¡ÒÃàÂÕèÂÁªÁàÇçºä«µìµèÍ仹Õé¢Í§ Microsoft:¼ÅÔµÀѳ±ì¢Í§ºØ¤¤Å·ÕèÊÒÁ·Õè¡ÅèÒǶ֧㹺·¤ÇÒÁ¹Õé ¼ÅÔµ¢Öé¹â´ÂºÃÔÉÑ··ÕèäÁè¢Öé¹ÍÂÙè¡Ñº Microsoft Microsoft äÁèÃѺ»ÃСѹ ·Ñé§â´Â¹ÑÂËÃ×ÍÍÂèÒ§Í×è¹ã´ à¡ÕèÂǡѺ»ÃÐÊÔ·¸ÔÀÒ¾ËÃ×ͤÇÒÁ¹èÒàª×èͶ×ͧ͢¼ÅÔµÀѳ±ìàËÅèÒ¹Õé