OPERATIONAL DEFECT DATABASE
...
...
The following error message appears when joining a machine to the domain:You can't connect to the file share because it's not secure. This share requires the obsolete SMB1 protocol, which is unsafe and could expose your system to attack. Your system requires SMB2 or higher.This condition prevents joining the domain.
As the error indicates, this issue occurs if the system joining the domain requires SMB2 or higher, but the domain controller (DC) only supports SMB1. All supported Windows Server versions include support for SMB2 and higher, so this should only occur if those versions have been explicitly disabled.
Disabling SMB2 and higher is not recommended on any Windows machine, as SMB1 is an old and insecure protocol. Instead, SMB2 and SMB3 should be enabled on the DCs in the domain. To do so, follow these steps: From an elevated PowerShell prompt, run Get-SmbServerConfiguration and check the value of EnableSMB2Protocol in the output. If it shows Disabled, both SMB2 and SMB3 are disabled.To enable SMB2 (which also enables SMB3), run Set-SmbServerConfiguration -EnableSMB2Protocol $true.Attempt to join the domain again. The issue should be resolved, but it may be necessary to enable SMB2 and SMB3 on other DCs as well.
Click on a version to see all relevant bugs
Dell Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.
