Monitor and alert on trust relationship status

Question

We recently had an Active Directory audit and one of the recommendations was to monitor the domain trust relationship between Ourdomain.COM and DMZ.NET.

First, I would like to know if it's possible to use SolarWinds to poll the status of the trust direction. I have attached a PowerShell script that will return 1 of 2 results depending on what it finds during the query.

###################################

# Here are the contents of the script:

###################################

$ADDC = "DCAD01PRD"

$DMZTrustDirection = gwmi -Class microsoft_domaintruststatus -Namespace "root\microsoftactivedirectory" -ComputerName $ADDC -Filter "TrustedDomain='dmz.net'" | %{ $_.TrustDirection }

If ($DMZTrustDirection -eq '1')

{

Write-Host "Incoming trust confirmed"

}

Else

{

Write-Host "Investigate trust"

}

<#

TrustDirection = Direction of Trust

1 = Incoming only

2 = Outgoing only

3 = Two-way

#>

mesverrum · Answer

It's possible to rework that script, but have you heard that they added in a built in template for active directory, and are working on bringing trusts into the next release of it?  Probably should try to weigh in on this thread to help the PM know what you want to watch.

SAM users - we need your help!