The below warning may occur when collecting cross domain group membership:
Failed to get members of local groups of domain 'domainname'. Unable to connect to LDAP server. Target server: <domainname>. Port: 389. Unable to connect to LDAP server. Strong Authentication Required
The Agent Service account (LOCAL_SYSTEM by default) authenticates to the remote domain using LDAP_AUTH_NEGOTIATE which will use Kerberos or NTLM. If the below policy settings are configured on the DC's in the remote domain, this could cause an issue with the authentication:
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center