Dangerous SYSVOL Replication Configuration
medium
언어:
설명
"File Replication Service" (FRS) is deprecated since Windows Server 2008 R2. Tenable highly recommends migrating the SYSVOL share replication from FRS to "Distributed File System Replication" (DFS-R) for better robustness, scalability, and replication performance.
솔루션
Microsoft recommends using the recent and supported DFS-R protocol for SYSVOL replication. You must migrate SYSVOL shares still using "File Replication Service" (FRS) to "Distributed File System Replication" (DFS-R) manually following the procedure from Microsoft.
참고 항목
Active Directory Security Assessment Checklist - SYSVOL replication through NTFRS
Windows Server version 1709 no longer supports FRS
The Case for Migrating SYSVOL to DFSR
Importing a GPO using GPMC fails with "The Directory is not empty"
지표 세부 정보
이름: Dangerous SYSVOL Replication Configuration
코드명: C-DFS-MISCONFIG
심각도: Medium