Trusting domains

By approving domains, a list of “trusted” domains can be established.

In an Active Directory forest including sub-domains (for example company.int and its sub-domain lab.company.int), approval relationships make it possible to use logins on a domain to access resources on another domain.

As is the case with multiple directories, one SN SSO Agent needs to be dedicated to each domain (or sub-domain) that is part of the trust relationship.