Lsass
| Setting Name | Description |
| DomainSeparator |
Character used to designate the domain name separator. Default value: \\ |
| SpaceReplacement |
Character used to designate space characters in names of objects. Default value: ^ |
| EnableEventlog |
Configure lsass to log events to the event log. Default value: false |
| LogInvalidPasswords |
Configure lsass to log events for failed authentication attempts due to invalid passwords. |
| SaslMaxBufSize |
Size of the buffer to allocate for decoding incoming LDAP responses (bytes). Default value: 16777215 |
| Providers |
Configure which lsass providers to load. Default value: ActiveDirectory |
| DomainIDRanges |
Comma delimited string of Domain ID ranges to use. For example: domainA,1000,2000. |
