You'd probably want to look at a Virtual Directory product here. Trusts are going to use legacy RPC type stuff (ala the ports you mentioned) unless they are forest trusts in which case they are native Kerberos.
Thanks, Brian Desmond [email protected] c - 312.731.3132 From: Fogarty, Richard R CTR USA USASOC [mailto:[email protected]] Sent: Monday, August 10, 2009 1:32 PM To: NT System Admin Issues Subject: LDAP Service I have multiple companies that have their own windows domains. At present none have trusts with the other. I'd like to be able to setup some databases that they all can access without having an additional userid/password for authentication. I was thinking that I could setup a resource domain that would allow the trusts between the multiple domains and allow authentication to happen automatically. Unfortunately, I'm told that our firewall will not allow that type of traffic (UDP 137, 138, 139). Would an LDAP service configured to use Kerberos work in a situation like this? (Don't know much about this...) Any suggestions are greatly appreciated. Rick ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
