domain controllers do use a certificate. But assuming your app is hosted by a "fake" domain, which installed an internal certificate as trusted, you would need to supply your own certificate validation routine.
How to verify Active Directory domain "identity"?
MDell.Seradex
1
Reputation point
I am writing a .NET application and am wondering if there is a way to concretely identify that the Active Directory domain the application is running in is mine and not another domain attempting to impersonate mine.
In this case the internal domain names would be the identical, but they are actually separate domains running on different networks.
I was thinking of something like a certificate on the domain that I can validate, but would accept anything else.
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
7,023 questions
Developer technologies | C#
11,576 questions
1 answer
Sort by: Most helpful
-
Bruce (SqlWork.com) 77,926 Reputation points Volunteer Moderator
2022-12-08T21:07:07.11+00:00