Solved

LDAP Query for account properties over a trust

Posted on 2011-03-03
1
702 Views
Last Modified: 2012-06-21
I have two domains domain1.corp.com and domain2.corp.com that share a trust relationship. I have a third party network access control system that periodically sniffs kerberos traffic to obtain user credentials and spot check/implement access rules on the connection. This tool does no authentication in and of itself, it merely passively sniffs traffic. It is only capable of defining a single LDAP source for its lookups.

I would like to query for account properties on domain2 via an LDAP query against domain1. Specifically, we interrogate the memberOf properties to look for specific network access groups. Is this possible without some sort of LDAP front end?
0
Comment
Question by:WMorgen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 10

Accepted Solution

by:
abbright earned 500 total points
ID: 35031240
You may want to try to query the global catalog which holds information from several trusting domains. Maybe the following helps: http://technet.microsoft.com/en-us/library/cc978012.aspx
0

Featured Post

The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Suggested Courses

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question