184.108.40.206.4 Calling NetrGetForestTrustInformation
The client calling this method MUST be a DC in a different domain. If the NegotiateFlags bit T is not set, then the client SHOULD NOT call this method.
The client MUST do the following:
Pass a valid client Netlogon authenticator as the Authenticator parameter.
After the method returns, the client MUST verify the ReturnAuthenticator as described in section 220.127.116.11.
On receiving STATUS_ACCESS_DENIED, the client SHOULD<143> reestablish the secure channel with the domain controller.