How to verify Active Directory domain "identity"?

MDell.Seradex 1 Reputation point
2022-12-06T17:18:36.467+00:00

I am writing a .NET application and am wondering if there is a way to concretely identify that the Active Directory domain the application is running in is mine and not another domain attempting to impersonate mine.
In this case the internal domain names would be the identical, but they are actually separate domains running on different networks.
I was thinking of something like a certificate on the domain that I can validate, but would accept anything else.

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Developer technologies | C#
{count} votes

1 answer

Sort by: Most helpful
  1. Bruce (SqlWork.com) 77,926 Reputation points Volunteer Moderator
    2022-12-08T21:07:07.11+00:00

    domain controllers do use a certificate. But assuming your app is hosted by a "fake" domain, which installed an internal certificate as trusted, you would need to supply your own certificate validation routine.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.