Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Running IDFix over the VPN against 'the external DC' #27

Open
1 of 4 tasks
BorisVis opened this issue Aug 12, 2020 · 4 comments
Open
1 of 4 tasks

Running IDFix over the VPN against 'the external DC' #27

BorisVis opened this issue Aug 12, 2020 · 4 comments
Labels
enhancement New feature or request

Comments

@BorisVis
Copy link

BorisVis commented Aug 12, 2020
edited by bryan-phillips
Loading

@patrick-rodgers :

Is it possible to run IDFix remotely to evaluate AD different from DC where IDFix is installed?

I installed IDFix on Win 10 Laptop in DC=Corp_A.
My Win 10 Laptop is configured with the VPN to Windows Server 2010 R2 running DC=Corp_B.
I confirmed that VPN is working and I can access AD on DC=Corp_B.
I can not successfully run IDFix to evaluate AD DC=Corp_B:
I use the port 3268 to add the hostname for AD DC=Corp_B in settings and make sure that only this AD is selected via Check_Box.
I also changed Credentials from to and entered
When I run a query with the filter field 'blank' or any other 'common filter' (objectCategory=Person - as an example),
IDFix reported error: : " The specified Forrest does not exist or can not be contacted " : Error in RulesRunner.

  • Enhancement
  • Bug
  • Question
  • Documentation gap/issue

Version

Please specify what version of IdFix you are using: [ 2.2.0.0 ]

If you are not using the latest release, please update and see if the issue is resolved before submitting an issue.

Expected / Desired Behavior / Question

I expect :

  • IDFix to 'keep' Additional Active Directories added via setting [Add] Dialog and not to connect to ' home ' DC each time when IDFix is restarted;
  • I would expect IDFix to connect to remote ( 'non-home') DC=Corp_B and being able to Query and run other operations
  • I would expect an Error message to be a bit more detailed to help me determine what is 'wrong' in Settings.

Observed Behavior

Only works on the DC (Domain) where it is installed.
Need help configuring and running IDFix against external/remote AD domain (DC) via VPN.
Need help troubleshooting and interpreting Error Message

Steps to Reproduce

Connect to remote AD DC via VPN.
Confirm that IDFix installed in your local AD DC runs against the remote AD DC via VPN.
Please, share the configuration parameters for this topology.
Thank you,
Boris.
@BorisVis
Copy link
Author

Please, help how to configure IDFix Settings when running IDFix from 'the outside' of the DC that is being queried or via LDAP.
None other than 'auto-discovered' parameters seem to work.
IDFix Settings Parameters

@BorisVis
Copy link
Author

Thank you!

@BorisVis BorisVis reopened this Aug 13, 2020
@BorisVis
Copy link
Author

oops - still open

@patrick-rodgers
Copy link
Member

IdFix was never designed for this type of remote connection. Marking this as an enhancement - this feature may be included in future releases of the tool. Thank you for sharing your ideas on how we can improve IdFix!

@patrick-rodgers patrick-rodgers added the enhancement New feature or request label Aug 14, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@patrick-rodgers @BorisVis