Sid_F
asked on
Two way domain trust for Sharepoint access, security implications
I want users in domain B to have access to Sharepoint in domain A. I setup a one way trust for another site for the same scenario to access Sharepoint but there was a numer of issues that arose like timer services and sync. This is simplified when there is a two way trust.
I am trying to get a handle on what the security implications are for this. Obviously with a two way trust users in domain B now have the option to browse the domain A active directory and assign users in domain A access to resources in domain B but can you tell me what else I need to be concerned about. I have looked at numerous articles in domain trusts but I would like to get specific answers for this particular scenario. The domain is 2003 to 2008.
I am trying to get a handle on what the security implications are for this. Obviously with a two way trust users in domain B now have the option to browse the domain A active directory and assign users in domain A access to resources in domain B but can you tell me what else I need to be concerned about. I have looked at numerous articles in domain trusts but I would like to get specific answers for this particular scenario. The domain is 2003 to 2008.
ASKER
Yes but for Sharepoint this has implications for pulling information from domain B's active directory. It's not just giving users in domain B access to sharepoint in domain A. Its also being able to get attributes in domain B and allowing sharepoint to pull these details across to the user profiles sync into Sharepoint. Trusts are normally straight forward but with Sharepoint it becomes more complex.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Regards,
Krzysztof