I am not aware of a list of all possible domains. This is probably due to the fact that _most_ of the time, you do not need to know the TE of a file or process, expect of course when something goes wrong. Most KB articles that require you to change the TE also give you the appropriate domains. If you have a file that has the wrong TE, sometimes it helps to look at the same file on another firewall to see what the domain is on that firewall. Finally, the TE database that references all domains is hidden to everyone, as being able to view/change this would defeat the purpose of TE
CCro appears to me to be a Control Center domain that is read only. Also, the domain portion is going to be 4 digits, so "user domian"=User, Admin=Admn, etc
Hope this helps,
Awesome info! Thank you guys!