Hi. Any domain joined VM will create serviceConnectionPoint object under the computer object in AD (http://blogs.technet.com/b/askcore/archive/2012/09/18/what-is-the-windows-virtual-machine-object-in-active-directory.aspx).
We have special security requirements in our AD and by default these SCPs for VMs are visible to any user which breaks our security rules. My questions:
a) is it supported to change security on this object (doubt it, but I'm asking anyway)
b) what happens if I change the security on this object, specifically if I remove Authenticated Users from the ACL? Can I expect any problems?
c) what exactly is the SCP used for/by in this case? The article I mentioned above explains what it is, but not really what is it used for.
Thanks in advance