Hi!After that I’ve spent some time reading up on https://msdn.microsoft.com/en-us/library/cc223754.aspx there is something that’s still not clear to me regarding the secrets and keys as the TDO contains the trustAuthIncoming / trustAuthOutgoing attributes (depending on trust direction) – containing a LSAPRAUTHINFORMATION struct with keys to encrypt cross domain TGTs to my understanding. How is the password on the interdomain trust account related to this? How is it computed? Looking at metadata it seems to get updated at the same time as trustAuthIncoming / trustAuthOutgoing  Enfo ZipperChristoffer Andersson – Principal Advisor