[cifs-protocol] RE: LSA and trusted domains

Bill Wesse billwe at microsoft.com
Wed Oct 15 16:03:54 GMT 2008

Good morning again Andrew - here is a much more complete version of the document. It is still rough around the edges, and we have not yet determined the ultimate disposition of it. We may use parts of it for forthcoming documents, or keep it as a separate scenario document.

Please note all traffic and detail is against Windows 2008 servers only.

I will await your evaluation of the contents!

Bill Wesse
8055 Microsoft Way
Charlotte, NC 28273
TEL:  +1(980) 776-8200
CELL: +1(704) 661-5438
FAX:  +1(704) 665-9606

-----Original Message-----
From: Andrew Bartlett [mailto:abartlet at samba.org]
Sent: Friday, October 10, 2008 1:54 AM
To: Bill Wesse
Cc: Interoperability Documentation Help; pfif at tridgell.net; cifs-protocol at samba.org
Subject: RE: LSA and trusted domains

On Thu, 2008-09-11 at 09:00 -0700, Bill Wesse wrote:
> Good morning Andrew. I have attached a PDF document that describes
> creating an outbound trust account from 'DC.DOMAIN1.COM' to a domain
> to be trusted by this domain on 'DC.DOMAIN1.COM' only, without
> verification. Both domain controllers are Windows Server 2008, and
> both domains are at Windows Server 2008 domain/forest functional
> level.
> The document is a sample, of course, and is not complete by any means;
> but it does break down the indicated transaction in detail (and
> includes some basic normative and informative references).
> I would like your input concerning whether or not this is the type and
> level of information you are looking for concerning an overview of
> domain trust overview / high-level description.
> I want to make sure we thoroughly understand the specific details you
> are asking about.

This looks like a good start.  I'm not so worried about the specifics of setting up an SMB session to set up an RPC pipe as the details about the CreateTrustedDomain call, and the pre-requisites to those calls.

Andrew Bartlet

Andrew Bartlett
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Type: application/pdf
Size: 1641438 bytes
Url : http://lists.samba.org/archive/cifs-protocol/attachments/20081015/62a28fd5/SCENARIO_DOMAIN_TRUST-0001.pdf

More information about the cifs-protocol mailing list