3.1.1.5 Trusted Domain Object Data Model
An implementer must read [MS-ADTS] section 6.1.6 to understand the role of trusts in Active Directory and to understand the data model in this specification.
Inside the Local Security Authority (Domain Policy) Remote Protocol database, a trusted domain object (TDO) is represented by the following table. Each abstract data field listed in the Name column of the table contains a link to the appropriate section in [MS-ADTS] section 6.1.6.7. See these sections for detailed information, including how each abstract data field is mapped to an Active Directory attribute. The Type column lists the data type for its corresponding abstract data field. The Attribute Name column lists the ldapDisplayName and a link to the appropriate section in [MS-ADA1], [MS-ADA2], or [MS-ADA3] for the corresponding abstract data field stored in Active Directory.
|
Name |
Type |
Attribute name |
|---|---|---|
|
Name ([MS-ADTS] section 6.1.6.7.13) |
trustPartner ([MS-ADA3] section 2.325) |
|
|
Flat Name ([MS-ADTS] section 6.1.6.7.1) |
RPC_UNICODE_STRING |
flatName ([MS-ADA1] section 2.232) |
|
Security Identifier ([MS-ADTS] section 6.1.6.7.8) |
securityIdentifier ([MS-ADA3] section 2.237) |
|
|
Trust Type ([MS-ADTS] section 6.1.6.7.15) |
unsigned int (as specified in section 2.2.7.9 TrustType) |
trustType ([MS-ADA3] section 2.327) |
|
Trust Direction ([MS-ADTS] section 6.1.6.7.12) |
unsigned int (as specified in section 2.2.7.9 TrustDirection) |
trustDirection ([MS-ADA3] section 2.323) |
|
Trust Attributes ([MS-ADTS] section 6.1.6.7.9) |
unsigned int (as specified in section 2.2.7.9 TrustAttributes) |
trustAttributes ([MS-ADA3] section 2.320) |
|
Posix Offset ([MS-ADTS] section 6.1.6.7.14) |
trustPosixOffset ([MS-ADA3] section 2.326) |
|
|
Trust Incoming Passwords ([MS-ADTS] section 6.1.6.7.10) |
Array of LSAPR_AUTH_INFORMATION |
trustAuthIncoming ([MS-ADA3] section 2.321) |
|
Trust Outgoing Passwords ([MS-ADTS] section 6.1.6.7.11) |
Array of LSAPR_AUTH_INFORMATION |
trustAuthOutgoing ([MS-ADA3] section 2.322) |
|
Supported Encryption Types ([MS-ADTS] section 6.1.6.7.3) |
msDS-SupportedEncryptionTypes ([MS-ADA2] section 2.481) |
|
|
Forest Trust Information ([MS-ADTS] section 6.1.6.7.4) |
msDS-TrustForestTrustInfo ([MS-ADA2] section 2.496) |
|
|
Security Descriptor ([MS-ADTS] section 6.1.6.7.5) |
nTSecurityDescriptor ([MS-ADA3] section 2.37) |
The following citation contains a timeline of when each information value was introduced.<54>