/29/2012 10:09 PM
Subject:RE: LDAP authentication across external trust
Unless I’m reading your setup incorrectly:
You have a one-way trust with selective authentication. When WebPortal
(part of Domain B) contacts a Domain B DC, the Domain B DC would provide a
referral to a Domain A DC
-software.com
Date:08/29/2012 10:09 PM
Subject:RE: LDAP authentication across external trust
--
Unless I’m reading your setup incorrectly:
You have a one-way trust with selective authentication. When WebPortal
(part of Domain B) contacts a Domain B DC
From: Christopher Bodnar [mailto:christopher_bod...@glic.com]
Sent: Thursday, 30 August 2012 10:35 PM
To: NT System Admin Issues
Subject: RE: LDAP authentication across external trust
Yes Ken you have summed it up correctly. Never had to do something like this
before, but find it odd
Hi Chris. Are they in the same Forest or separate ? eg domaina.company.com and domainb.company.com or domaina.com an domainb.com ?Don KFrom: Christopher Bodnar christopher_bod...@glic.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, August 29, 2012
Insurance Company of America
www.guardianlife.com
From: Don Kuhlman drkuhl...@yahoo.com
To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
Date: 08/29/2012 04:59 PM
Subject:Re: LDAP authentication across external trust
Hi Chris. Are they in the same Forest
If it's a pure-LDAP application, you'll want to point it to a Domain A DC,
using a Domain A service account for the administrative bind.
Do *not* use the round-robin domain name A record for a plain-old-LDAP
application unless you have only one site with DCs in it.
I've set up (and programmed)
]
Sent: Thursday, 30 August 2012 7:16 AM
To: NT System Admin Issues
Subject: Re: LDAP authentication across external trust
Sorry ... separate forests. (acme.com and widgets.com)
Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture
and Engineering
