Sync With Multiple Domains

If you would like your sync to pull users from multiple domains you will need to ensure the following:

  • All domains you are targeting are in a two way trust relationship with each other
  • You have a service account of the same username with the same password on all domains 

Once this is in place:

Version 12.0: Go to your Admin --> Site Settings --> Global Settings --> Execute Custom Code and run the following query

Version 12.5: Go to your Admin --> Setup --> Global Settings --> Execute Custom Code and run the following query

<!--- start code --->

<cfquery datasource="#application.config.DSN#">
Update Administrator_Information
Set ADField2= '1'

<!---end code ---> 


In version 13.0+, please use the alternative code:

<!--- start code --->

<cfquery datasource="#application.config.DSN#">

UPDATE AppSetting SET Value = '1' WHERE Name = 'ADField2'


<!---end code ---> 

Once this is complete, go to Admin --> Site Security / Security --> AD Login Synchronization

For each domain you want to loop through, enter the details of the domain name, domain controller and administrator. Separate the values with a semi-colon. In the example below we are syncing two domains '' and ''

Full Domain Name:; child.sqbox com
Domain Controller: sqboxDC1; sqboxChildDC1
Username: sqbox\administrator; sqboxchild\administrator
Password: ********              (only enter the password once)

Now, in the Advanced Options ---> Start field, enter the full canonical location of each Domain separated by a semi colon

Start: DC=Sqbox, DC=Com; DC=Child, DC=Sqbox, DC=Com

Save the sync. 

Note that multiple domain synchronization is currently incompatible with scenarios where there are accounts with the same username in multiple domains (except the service account used for the sync). This will cause unexpected sync behavior. If this is the case we recommend setting up a sync filter via a Universal security group that identifies the desired user record (1 instance only) from any of the synced domains. 

Referenced by:

Have more questions? Submit a request


Article is closed for comments.