Domain A is your primary and Domain B is untrusted. Domain A needs a services account from B in order for Domain A to discover resources in Domain B. You specify Srv-B/pass when setting discovery
This domain A's discovery config. btw. you need write your LDAP path initially. [image: Inline image 1] On Mon, Jul 21, 2014 at 8:43 AM, Thomas Gonzalez < [email protected]> wrote: > So let me understand this correctly; > > > > Domain A needs to discover Domain B (untrusted) with a service account > from Domain A > > > > Domain B (untrusted) needs service account from Domain A to discover > Domain A > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *elsalvoz > *Sent:* Monday, July 21, 2014 10:32 AM > *To:* [email protected] > *Subject:* Re: [mssms] Cross forest > > > > No. We have multiple untrusted domains, all you need is service accounts > in both sides, though, we don't publish anything in or from the untrusted > domains. > > Cesar > > On Jul 21, 2014 8:18 AM, "Thomas Gonzalez" <[email protected]> > wrote: > > Anyone have a good explanation on cross forest? I've seen anoop's write > up..but the item in confused is; untrusted domain, service account in other > domain given ability to read. But does the untrusted sccm need publishing > permissions?, > > Thomas Gonzalez > > > > > >
