Hi Greg,
Thanks for the suggestion – I had completely forgotten this would show up in
the LDAP logs. After running that down, it turns out (surprise!) to be a case
of user error. The search base for the VIASAT.IO principals was wildly
different from the base for our subrealms. One of our eng
On 01/22/2017 07:11 PM, Kemper, Stephan wrote:
> Sorry for the spam, but after continuing to investigate, it looks like this
> database shortcut only works for vertical trusts. A
> krbtgt/a.viasat...@b.viasat.io principal only shows up in the realm it’s
> created in. That definitely pushes me
Sorry for the spam, but after continuing to investigate, it looks like this
database shortcut only works for vertical trusts. A
krbtgt/a.viasat...@b.viasat.io principal only shows up in the realm it’s
created in. That definitely pushes me toward the “unintended/bug” end of the
spectrum, becau
