We have Active Directory with Domain/Forest-Functionallevel "Windows Server 2008 R2". Now we have seen that there are a Option in the Trust Properties Tab called "The other domain supports Kerberos AES Encryption".
Our question is,
1. what are the requirements to use this option ?
2. what impact there are (e.g. with other encryption-types), if we activate this option ?
3. what are the steps to activate successfully this option (restart of services, reboot...) ?
Thanks for your help.