LEAP - ACS Authen. against active directory for users of another domain
We installed ACS 3.0 on W2000 server, member of a domain. When we tried
to authenticate users from another domain, but it failed.
We achieved to find out the problem. First, the server tries to find the PDC of the other domain (DNS request : _ldap._tcp.pdc._msdcs.domain). The DNS
server answer with the full name and IP address. But afterwards, instead of using the DNS answer, the server make a new request with the PCD name
and appending its own domain. The DNS request fails, and the user is not authenticated. A workaround consists in chaging the DNS search-list for the server, but I'm intersted if anyone had a better solution, or if the new release (ACS 3.1) solves this issue.