M
Madhu Gopinathan
Hi,
I am using DsEnumerateDomainTrusts(...) to query the trust relationships
between domains. What I would like to know is how to interpret the values
returned in TrustAttributes value of the DS_DOMAIN_TRUSTS structure. More
specifically, I would like to interpret the result to the relationship
between the domains(viz. External, Parent/Child, Tree Root, Forest) and the
transitivity of trusts. Could someone help me here?
I came across the following very limited documentation of the values in
NtSecApi.h
#define TRUST_ATTRIBUTE_NON_TRANSITIVE 0x00000001 // Disallow
transitivity
#define TRUST_ATTRIBUTE_UPLEVEL_ONLY 0x00000002 // Trust link
only valid for uplevel client
#define TRUST_ATTRIBUTE_FILTER_SIDS 0x00000004 // Used to
quarantine domains
#define TRUST_ATTRIBUTE_FOREST_TRANSITIVE 0x00000008 // This link may
contain forest trust information
What do the values above signify? What does one mean by "quarantine
domains"?
Thanks in advance.
Regards,
Madhu
I am using DsEnumerateDomainTrusts(...) to query the trust relationships
between domains. What I would like to know is how to interpret the values
returned in TrustAttributes value of the DS_DOMAIN_TRUSTS structure. More
specifically, I would like to interpret the result to the relationship
between the domains(viz. External, Parent/Child, Tree Root, Forest) and the
transitivity of trusts. Could someone help me here?
I came across the following very limited documentation of the values in
NtSecApi.h
#define TRUST_ATTRIBUTE_NON_TRANSITIVE 0x00000001 // Disallow
transitivity
#define TRUST_ATTRIBUTE_UPLEVEL_ONLY 0x00000002 // Trust link
only valid for uplevel client
#define TRUST_ATTRIBUTE_FILTER_SIDS 0x00000004 // Used to
quarantine domains
#define TRUST_ATTRIBUTE_FOREST_TRANSITIVE 0x00000008 // This link may
contain forest trust information
What do the values above signify? What does one mean by "quarantine
domains"?
Thanks in advance.
Regards,
Madhu