Hello, I have a problem in authenticating the agents on differents 2003 Active Directory domain. Let's suppose that DOMAIN1 is in trust with DOMAIN2. This configuration, of course works without hassle: # ---------------------------------------------------- # # DOMAIN 1 authentication for Agents # # ---------------------------------------------------- # $Self->{'AuthModule1'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host1'} = 'subdomain.domain.com'; $Self->{'AuthModule::LDAP::BaseDN1'} = 'DC=subdomain,DC=domain,DC=com'; $Self->{'AuthModule::LDAP::UID1'} = 'sAMAccountName'; $Self->{'AuthModule::LDAP::SearchUserDN1'} = 'user@subdomain.domain.com'; $Self->{'AuthModule::LDAP::SearchUserPw1'} = 'passwd'; # ---------------------------------------------------- # # DOMAIN 2 authentication for Agents # # ---------------------------------------------------- # $Self->{'AuthModule2'} = 'Kernel::System::Auth::LDAP'; $Self->{'AuthModule::LDAP::Host2'} = 'anothersubdomain.anotherdomain.com'; $Self->{'AuthModule::LDAP::BaseDN2'} = 'DC=anothersubdomain,DC=anotherdomain,DC=com'; $Self->{'AuthModule::LDAP::UID2'} = 'sAMAccountName'; $Self->{'AuthModule::LDAP::SearchUserDN2'} = 'anotheruser@anothersubdomain.anotherdomain.com'; $Self->{'AuthModule::LDAP::SearchUserPw2'} = 'passwd'; but the drawback is that you need two different users to authenticate on the domains, one in DOMAIN1 userspace and another on DOMAIN2 userspace. What if I want to authenticate users belonging to both domains using only one user, since the domains are in trust?