Trusted Domains in Active Directory

From Swivel Knowledgebase
Jump to: navigation, search


Overview

Active Directory can be configured to use trusted domains where user data is held in differing AD domains. PINsafe uses LDAP to communicate with Active Directory, and the LDAP paths for users in trusted domains do not match the names in the group membership attributes


Prerequisites

PINsafe 3.x

Windows Active Directory Server


Symptoms

Users are not imported during AD Synchronisation


Solution

Use Global Catalog

Create a new repository for each domain, and make sure that there are no overlaps between usernames in different domains