Export (0) Print
Expand All

3.4.5.5.4 Calling NetrGetForestTrustInformation

The client calling this method MUST be a DC in a different domain. If the NegotiateFlags bit T is not set, then the client SHOULD NOT call this method.

The client MUST do the following:

  • Have a secure channel established with a domain controller in the domain identified by domain-name and pass its name as the ServerName parameter.

  • Pass a valid client Netlogon authenticator as the Authenticator parameter.

After the method returns, the client MUST verify the ReturnAuthenticator as described in section 3.1.4.5.

On receiving STATUS_ACCESS_DENIED, the client SHOULD<143> reestablish the secure channel with the domain controller.

 
Show:
© 2014 Microsoft