• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 707
  • Last Modified:

LDAP Query for account properties over a trust

I have two domains domain1.corp.com and domain2.corp.com that share a trust relationship. I have a third party network access control system that periodically sniffs kerberos traffic to obtain user credentials and spot check/implement access rules on the connection. This tool does no authentication in and of itself, it merely passively sniffs traffic. It is only capable of defining a single LDAP source for its lookups.

I would like to query for account properties on domain2 via an LDAP query against domain1. Specifically, we interrogate the memberOf properties to look for specific network access groups. Is this possible without some sort of LDAP front end?
0
WMorgen
Asked:
WMorgen
1 Solution
 
abbrightCommented:
You may want to try to query the global catalog which holds information from several trusting domains. Maybe the following helps: http://technet.microsoft.com/en-us/library/cc978012.aspx
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now