Centrify Server Suite 5.2.1 - 5.2.3
The auto mount script (/usr/share/centrifydc/etc/adauto.pl) assumes the zone hierarchy is in the same Active Directory domain. If the automount maps are defined in the parent zone, the child zone in a different domain cannot read nor inherit the automount maps.
The adauto.pl script does not check if the parent zone is from the same domain as the joined domain. If the child zone is in a different domain, the script fails because there is no binding to the parent domain.
1) Modify the /usr/share/centrifydc/etc/adauto.pl script
2) Locate the line:
bind -machine [adinfo domain]
3) Add another line below it:
bind -machine <parentDomain>
This gives the adauto.pl a binding to the parent domain.
Resolved in Suite 2016. The adauto.pl script is redesigned to call /etc/share/centrifydc/adedit/adlistnismaps. This script provides the code to bind to the parent domain.