Domain Trusts

Explore our comprehensive article on Domain Trusts, an essential aspect in network security.

Domain trusts are relationships established between two or more domains that allow for shared access to resources and user authentication across boundaries.

These trusts can be one-way, where only one domain recognizes the trust, or two-way, enabling mutual recognition and authentication.

In Windows Server environments, trusts can be transitive, extending the trust beyond two domains, or non-transitive, limiting the trust strictly between the two specified domains.

Understanding and configuring domain trusts is crucial for maintaining security and efficient resource management in complex network infrastructures.

Get a list of all the domain trusts for the current domain

Get-NetDomainTrust

Get details about the forest

Get-NetForest

Get all domains in the forest

Get-NetForestDomain
Get-NetforestDomain -Forest <domain name>

Get global catalogs for the current forest

Get-NetForestCatalog
Get-NetForestCatalog -Forest <domain name>

Map trusts of a forest

Get-NetForestTrust
Get-NetForestTrust -Forest <domain name>
Get-NetForestDomain -Verbose | Get-NetDomainTrust

Check domain trust for a specific domain

Get-NetDomainTrust -Domain <specific domain name>

Get the forest trust status

Get-NetForestTrustStatus
Get-NetForestTrustStatus -Forest <domain name>

Retrieve Domain Controllers for a specific domain

Get-NetDomainController
Get-NetDomainController -DomainName <specific domain name>

Enumerate Organization Units (OUs) in a domain

Get-NetOU -Domain <domain name>
Get-NetOU -Domain <domain name> -FullData

PreviousACLs Enumeration NextDomain Forests

Last updated 22 days ago

Was this helpful?