2.5.4.2 Multiple Domains
The following subsection describes a use case that pertains to a network domain logon in a multiple domain environment. For the following use case, it is assumed that a user account is provisioned in one domain (domain1), that a resource is located in another domain (domain2), and that both domains are in the same forest. For these use cases, AA1 denotes the Authentication Authority (AA) of domain1, AA2 denotes the AA of domain2, and Account DB #1 and Account DB #2 denote the account databases for domain1 and domain2, respectively.