From a2edcf14dc8842de4df5060229e182bc3e953dbe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jonas=20B=C3=BClow=20Knudsen?=
 <12843299+JonasBK@users.noreply.github.com>
Date: Tue, 8 Oct 2024 17:29:27 +0200
Subject: [PATCH] handle parentchild trusts for TGT delegation

---
 src/CommonLib/Processors/DomainTrustProcessor.cs | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/CommonLib/Processors/DomainTrustProcessor.cs b/src/CommonLib/Processors/DomainTrustProcessor.cs
index 0d617add..16681f9d 100644
--- a/src/CommonLib/Processors/DomainTrustProcessor.cs
+++ b/src/CommonLib/Processors/DomainTrustProcessor.cs
@@ -86,7 +86,8 @@ public async IAsyncEnumerable<DomainTrust> EnumerateDomainTrusts(string domain)
 
                 trust.TGTDelegationEnabled = 
                     !attributes.HasFlag(TrustAttributes.QuarantinedDomain) &&
-                    attributes.HasFlag(TrustAttributes.CrossOrganizationEnableTGTDelegation);
+                    (attributes.HasFlag(TrustAttributes.WithinForest) ||
+                    attributes.HasFlag(TrustAttributes.CrossOrganizationEnableTGTDelegation));
 
                 trust.TrustType = TrustAttributesToType(attributes);