To determine what software is available and published for a user who is accessing the Software Portal, you must determine what user groups the user is a part of. This can be done either directly or indirectly through other groups. The analysis of relationships between groups within domains and between domains is determined. The result of the analysis is a set of SIDs (Security IDs).
The user only has access to the software that is published to at least one of the groups that the user is a member of. I.e. has at least one publishing item with SIDs of a set, obtained by analysing Parent user groups . Parent user group analysis is held solely by means of .NET. .NET API is used for interfacing with the Active Directory service.
The following algorithm is used in the analysis for user memberships.
Since the analysis of all the trusted domains is a very intensive operation, there is now the option to switch off the trusted domains check in the Software Portal settings page.
There is now also the option for you to check some of the trusted domains after this check has been switched off. You can add specific domains to a list via the registry in the following location: HKEY_LOCAL_MACHINE\SOFTWARE\Altiris\SWM by creating there multistring “includeDomainList”.
NOTE: The domain names in the list should be in FQDN and NetBIOS (short) format. This is to avoid FQDN resolving during the publishing or Software Portal configuration.