Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
TDOs are stored in the System container, with a CN representing the fully qualified domain name (FQDN) (2) of the trusted domain. For example, if a.example.com trusts b.example.com, an object would be created in the System container with a CN of b.example.com. The System container can be found by using the function GetWellknownObject(NC, default NC, GUID_SYSTEM_CONTAINER_W). For more information, see section 3.1.1.1.
The contents of TDOs are described by the trustedDomain schema object [MS-ADSC]. The following table details those attributes that are essential to a well-functioning interdomain trust, with links to specific sections detailing their relevance and format when these attributes are present.