We have two separate Active Directory domains that have a trust relationship. When I access a network share on the other machine I am prompted for a username and password even though I am logged on as a user that has permissions to the share. Also the dialog has the following message at the bottom:
“The system has detected a possible attempt to compromise security”
This is causing serious problems with one of the services we are running. Is this behaviour expected? I would not expect to have to re-enter my credentials as these should be passed-through and this is causing issues with programmatic access to the network share. Does anyone have any suggestions to help diagnose the problem?
Best Answer
What happens in the background when a user in one forest needs access to a resource in a remote trusting domain is this:
This process is known as Referral Processing.
Without having tested any of the following further, but based on the following KB article: You receive a "The system has detected a possible attempt to compromise security" error message when you try to include security settings for a user from different domain in a local domain folder, I suspect that the remote server is trying to validate the authenticity of the trusted user on it's own.
If the server in the trusting domain can not contact any Domain Controllers in the trusted domain on tcp/88, the validation process will surely fail, and you get that warning.
Check perimeter firewalls between the two domains and see if any traffic towards port 88 is getting dropped