<div>
It is A and you are probably going to have to do the schema extension for the application
</div>


It is A and you are probably going to have to do the schema extension for the application

<div>
Thanks for responding. <br />
<br />
Could I do either of this, populate AD LDS user object with proxy object, the SID of ADDS user, would that cause ADLDS to go to ADDS to get authenticated, or perhaps ave some other tool such as FIM, synch the ADDS user objects from ADDS to ADLDS?
</div>


Thanks for responding.

Could I do either of this, populate AD LDS user object with proxy object, the SID of ADDS user, would that cause ADLDS to go to ADDS to get authenticated, or perhaps ave some other tool such as FIM, synch the ADDS user objects from ADDS to ADLDS?

<div>
<div class="content wysiwyg-content">
I'm confused about something and cannot find an answer on the net.<br />
I have a ADDS infrastructure. A new application HAS to be deployed that requires schema changes. <br />
I do not want to make schema changes so I deploy a AD LDS instance and add the application to the same server (not ideal but please bare with me).<br />
My question - The application is accessed over the internal network by users already authenticated using Kerberos, The application requires users to be authenticated. How does AD LDS achieve this? Is it A, User objects get created in AD LDS instance along with the passwords. Or B, users objects are linked to ADDS some how and authorisation is passed to ADDS. <br />
<br />
Anyone know how this works?<br />
Thanks
</div>
</div>


I'm confused about something and cannot find an answer on the net.
I have a ADDS infrastructure. A new application HAS to be deployed that requires schema changes. 
I do not want to make schema changes so I deploy a AD LDS instance and add the application to the same server (not ideal but please bare with me).
My question - The application is accessed over the internal network by users already authenticated using Kerberos, The application requires users to be authenticated. How does AD LDS achieve this? Is it A, User objects get created in AD LDS instance along with the passwords. Or B, users objects are linked to ADDS some how and authorisation is passed to ADDS. 

Anyone know how this works?
Thanks

AD LDS integrated with ADDS question

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.