Howdie!
On 07.06.2010 12:51, conta grupos wrote:
> We have a domain (domain.int for example) with several server in
> windows 2003 arquitecture with hundreads acounts in the AD-LDAP witch
> we use for exchange and various others services.
>
> We have some others servers outside our core with diferents domains
> (other.one, other.two etc...) for those we want to give acess to their
> accounts located in our domain.int.
>
> What we want is to permit a user () in the domain
> other.one to only authenticate in our domain (domain.int) only for
> autentication purpose without to need to put the machines in our
> domain.int.
So -- what is that authentication for then? Access to some resources in
that domain? Will the user perform administrative tasks there?
Depending on what the requirements are and how many users are involved,
I'd probably set a trust relationship between the two forests/domains
and then maintain authentication this way. Trusting domains take care of
that.
For just a handful of users, a trust might be overkill -- for that,
you'd probably want to set up a second account in the target domain and
have the user work with two accounts (an account for each domain).
Cheers,
Florian
|
Similar Threads
Linear Mode
