Overview

LanGuard cannot add a second AD or access the domain controller in domains with dis-joined domain names.

 

Solution

The root cause for such behavior is that LanGuard uses flattened domain names. Even though there is automated detection of domains if LanGuard has been set up to manage machines in multiple domains,  domains other than the one LanGuard server belongs to may need to be added manually.

Ensure that network connectivity tests from the LanGuard server succeed for all the domains.

GFI LanGuard 12

Locate the configuration file C:\ProgramData\GFI\LanGuard 12\toolcfg_simple.xml and add the second domain in the following item within the <Items> tag of the "DomainNameTwist":

<Category Name="DomainNameTwist">
<Items>
<Item Name="AutomaticMappingOfDomains"><![CDATA[NETBIOS1#$$#DNS1.DOMAIN.TLD#;;#]]></Item>
<Item Name="ManualMappingOfDomains"><![CDATA[NETBIOS2#$$#DNS2.DOMAIN.TLD#;;#]]></Item>
</Items>
</Category> 

To add multiple domains, use the following format:

<Item Name="ManualMappingOfDomains"><![CDATA[NETBIOS2#$$#DNS2.DOMAIN.TLD#;;#NETBIOS3#$$#DNS3.DOMAIN.TLD#;;#]]></Item>

 

You can check the NetBIOS (Network Basic Input/Output System) and the DNS (Domain Name Server) from the Command Prompt:

echo %UserDomain%
echo %UserDNSDomain% 

GFI LanGuard11

In GFI LanGuard11, add the following category within the <Categories> tag:

<Category Name="GatherLivePcsOPTwist">
<Items><Item Name="ManualMappingOfDomains"><![CDATA[NETBIOS#$$#DNS.DOMAIN.TLD#;;#]]></Item></Items>
</Category>
<Category Name="ImporterTwist">
<Items><Item Name="ManualMappingOfDomains"><![CDATA[NETBIOS#$$#DNS.DOMAIN.TLD#;;#]]></Item></Items>
</Category> 

 

Testing

The added domains should be available in the LanGuard Dashboard Computer Tree.