Share via

IFPCEEVpnConfiguration::DomainMappings property

  • Article

Applies to: desktop apps only

The DomainMappings property gets an FPCDomainMappings collection that contains a set of mappings, each of which defines a mapping of a single domain name to a set of domain names.

This property is read-only.

Syntax

HRESULT get_DomainMappings(
  IFPCEEDomainMappings **ppDomainMappings
);

' Data type: FPCDomainMappings

Property DomainMappings( _
  ByVal ppDomainMappings As IFPCEEDomainMappings _
) As FPCDomainMappings

Property value

Reference to the FPCDomainMappings collection that contains a set of mappings, each of which defines a mapping of a single domain name to a set of domain names.

Error codes

This property method returns S_OK if the call is successful; otherwise, it returns an error code.

Remarks

This property is read-only. It can be modified by calling the methods of the FPCDomainMappings collection retrieved (the IFPCEEDomainMappings interface retrieved in C++) and the methods of the collection's elements. Each of these elements contains a set of domain names to which the domain name specified in the DomainName property is mapped.

n a cross-forest scenario, in which there is no trust relationship between the forests, but there is a trust relationship between two domains in the two different forests, a VPN client in one domain may supply credentials to a Forefront TMG computer in the other domain using the user principal name (UPN) suffix on a smart card. If the UPN suffix differs from the domain name of the VPN client, a RADIUS server can authenticate the user because the RADIUS server can have a proxy rule which redirects the request to the correct RADIUS server, but the first attempt of the Forefront TMG computer to retrieve the security identifier (SID) of the user from Active Directory using the user name and domain name (UPN suffix) supplied will fail.

When RADIUS authentication succeeds and Forefront TMG fails to retrieve the user's SID from Active Directory, Forefront TMG will try to perform additional lookups using all the domain names to which the user-supplied domain name is mapped in the applicable FPCDomainMapping object of the FPCDomainMappings collection.

Requirements

Minimum supported client

 Windows Vista

Minimum supported server

 Windows Server 2008 R2, Windows Server 2008 with SP2 (64-bit only)

Version

 Forefront Threat Management Gateway (TMG) 2010

IDL

 Msfpccom.idl

DLL

 Msfpccom.dll

See also

FPCVpnConfiguration

 

 

Build date: 7/12/2010