LDAP Simple Bind with trusted domain user credentials

Giganews Newsgroups
Subject: LDAP Simple Bind with trusted domain user credentials
Posted by:  Cameron Murray (CameronMurr…@discussions.microsoft.com)
Date: Thu, 4 Dec 2008

Two forests with two way trusts, Forest1 is at Server 2008 level, Forest2 is
at Server 2003 level.

We are trying to support a LDAP client that only allows for a simple bind
against Active Directory. It is used to look up contacts/emails. All of the
contacts reside in Forest1. Users reside in Forest2. We are trying to perform
a simple bind to a DC in Forest2 using either the UPN or samaccountname of a
user in Forest1. All simple bind attempts fail with a username not found
message.

I have replicated this problem in ADSI editor on a DC in Forest1. Attempting
to perform a simple bind to the DC using credentials from Forest2 the
connection fails. Attempting a normal bind will succeed and the directory is
visible to the end user.

Is this by design? Is it possible to enable simple bind using trusted
credentials?

Replies