Share via


DomainMappings Property of the IFPCEEVpnConfiguration Interface

The DomainMappings property gets an FPCDomainMappings collection that contains a set of mappings, each of which defines a mapping of a single domain name to a set of domain names.

C++

HRESULT get_DomainMappings(
    IFPCEEDomainMappings** ppDomainMappings
);

Parameters

  • ppDomainMappings
    Address of an interface pointer that on return points to the IFPCEEDomainMappings interface that represents a set of mappings, each of which defines a mapping of a single domain name to a set of domain names.

Return Value

This property method returns S_OK if the call is successful; otherwise, it returns an error code.

Visual Basic

Property DomainMappings As FPCDomainMappings

Property Value

Reference to the FPCDomainMappings collection that contains a set of mappings, each of which defines a mapping of a single domain name to a set of domain names.

Remarks

This property is read-only. It can be modified by calling the methods of the FPCDomainMappings collection retrieved (the IFPCEEDomainMappings interface retrieved in C++) and the methods of the collection's elements. Each of these elements contains a set of domain names to which the domain name specified in the DomainName property is mapped.

n a cross-forest scenario, in which there is no trust relationship between the forests, but there is a trust relationship between two domains in the two different forests, a VPN client in one domain may supply credentials to a Forefront TMG computer in the other domain using the user principal name (UPN) suffix on a smart card. If the UPN suffix differs from the domain name of the VPN client, a RADIUS server can authenticate the user because the RADIUS server can have a proxy rule which redirects the request to the correct RADIUS server, but the first attempt of the Forefront TMG computer to retrieve the security identifier (SID) of the user from Active Directory using the user name and domain name (UPN suffix) supplied will fail.

When RADIUS authentication succeeds and Forefront TMG fails to retrieve the user's SID from Active Directory, Forefront TMG will try to perform additional lookups using all the domain names to which the user-supplied domain name is mapped in the applicable FPCDomainMapping object of the FPCDomainMappings collection.

Requirements

Client Requires Windows 7 or Windows Vista.
Server Requires Windows Server 2008 R2 or Windows Server 2008 x64 Edition with SP2.
Version Requires Forefront Threat Management Gateway (TMG) 2010.
IDL

Declared in Msfpccom.idl.

DLL

Requires Msfpccom.dll.

See Also

FPCVpnConfiguration

Send comments about this topic to Microsoft

Build date: 6/30/2010