Automatic Kerberos Transitive Trusts
When an Directory tree or forest is built, as domains are added to the tree, transitive, two-way trust relationships are created between parent and child domains. Figure 18.2 shows three domains in a single tree. The domain names are a.com, b.a.com, and c.a.com. Domain names are, of course, contiguous with the parent DNS domain name.
Figure 18.2. Automatically created trusts in a forest.
A two-way trust relationship exists between domain A and domain B. Also, a two-way trust relationship exists between domain A and domain C. However, an explicit trust relationship does not exist between domain B and domain ...
Get Special Edition Using Microsoft Active Directory now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
