>>Also, what is lsasrv.dll and lsass.exe (decribed very thoroughly as "LSA Executable and Server DLL (Export Version)") and why they keep trying to access the other machines in the network using the isakmp port (none of these names are mentioned in the w2k help)?
>>
>
>This (might) help:
>
>
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/prodtech/secureev.aspThanks, this does (combined with what Jerry posted) shed some light on the issue. Still, it makes me wonder how many things is Windows doing behind our backs, things we were never told about.