Configure Kerberos Forest Search Order (KFSO) topic on TechNet

Herbert from Microsoft support team has authored a great topic about Kerberos Forest Search Order (http://technet.microsoft.com/en-us/library/configure-kerberos-forest-search-order-kfso(WS.10).aspx). KFSO allows finding a service principal name (SPN) in multiple forests , and had little public information available on Microsoft websites previously. The topic covers how the KDC and Kerberos GP policies work, both at a high-level and with steps illustrated in detail. The settings require Windows Server...(read more)