This may be beyond the scope of this list, but I figured I’d try. Microsoft does not use Kerberos authentication between domains in different, trusted, Forests (bad Microsoft!), it uses NTLM. I’ve heard that it is possible to set up the KDC to act like a MIT Realm and use Kerberos as the authentication for a trust between domains in different forests, but I can’t find any white papers to back this up. Does anyone know if it is indeed possible to do this, or is my information bad and I’m stuck using NTLM?
Brad Martin Go Daddy Software 480.505.8800 ext. 250
|
- RE: [ActiveDir] Kerberos for Trusts Brad Martin
- RE: [ActiveDir] Kerberos for Trusts Larry A. Duncan