Overview#

An internal cross-reference is an object that is created by the Microsoft Active Directory system.

For every directory partition in a forest, there is an internal cross-reference object in the Partitions container:

cn=Partitions,cn=Configuration,dc= ForestRootDomain

When you create a new forest, the Active Directory Installation Wizard creates three directory partitions:

For each of these partitions, a cross-reference object and therefore a LDAP Referral is created automatically.

New AD DOMAIN#

Thereafter, when a new AD DOMAIN is created in the AD Forest, another domain directory partition is created and the respective cross-reference object is created which creates another LDAP Referral.

Because these cross-reference objects are located in the configuration directory partition, they are replicated to every Domain Controller in the forest, and thus every Domain Controller has knowledge of the name of every partition in the forest (as well as their superior and subordinate relationships to each other).

By virtue of this knowledge, any Domain Controller can generate LDAP Referrals to any other AD DOMAIN in the forest, as well as to the schema directory partition and configuration directory partition.

More Information#

There might be more information for this subject on one of the following: ...nobody

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-2) was last changed on 25-Sep-2016 12:14 by jim