• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 709
  • Last Modified:

LDAP Query for account properties over a trust

I have two domains domain1.corp.com and domain2.corp.com that share a trust relationship. I have a third party network access control system that periodically sniffs kerberos traffic to obtain user credentials and spot check/implement access rules on the connection. This tool does no authentication in and of itself, it merely passively sniffs traffic. It is only capable of defining a single LDAP source for its lookups.

I would like to query for account properties on domain2 via an LDAP query against domain1. Specifically, we interrogate the memberOf properties to look for specific network access groups. Is this possible without some sort of LDAP front end?
0
WMorgen
Asked:
WMorgen
1 Solution
 
abbrightCommented:
You may want to try to query the global catalog which holds information from several trusting domains. Maybe the following helps: http://technet.microsoft.com/en-us/library/cc978012.aspx
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now