Re: Creating a trust between 2 Windows 2000 Domains

Tech-Archive recommends: Fix windows errors by optimizing your registry

Herb

surely only the DCs need WINS configured or do the clients of Domain B -
that are going to connect to the share on Domain A - need configured as well?

"Herb Martin" wrote:

> "Pete" <Pete@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:0871FF7B-917A-4CF6-A764-0D944DD1BE97@xxxxxxxxxxxxxxxx
> >I want to create a trust between two Windows 2000 domains, one with
> >ourselves
> > (domain A) and one domain from an external source (domain B). We do have
> > a
> > VPN connection with the external source. We want to put a trust in so
> > that
> > users in domain B can access a network share in domain A and have write
> > access to it.
> >
> > Basically how do I go about this and is it granular - in that we can
> > specify
> > certain users from Domain B to have access to certain files/folders on our
> > domain.
> >
> > When I try to setup a trust via AD Domains & Trusts I receive an error
> > message stating 'The <domain B> cannot be contacted. If this domain is a
> > Windows domain, the trust cannot be setup until the domain is
> > contacted...'
> > For this I was using the domain name of domain B.
>
> The magic word is "NetBIOS". External trusts are dependent on NetBIOS
> name resolution.
>
> > Reading from other questions posted I see I may have to setup DNS entries,
> > configure WINS etc.. add Firewall rule(s)
> >
> > Can anyone give me a definitive outline on what needs to be done - at our
> > end domain A and at domain B to allow this to happen.
>
> If you are working across routers (likely in your VPN situation) you
> have a practical need for "WINS Server(s)" that are fully replicated.
>
> So setup WINS Server(s) and replicate them (see MMC, any GUI
> Smart admin can do that part) and make sure that EVERY MACHINE
> (both 'clients' AND 'servers') are WINS clients (NIC->IP->Advanced
> properties.)
>
> As to your firewall, you must know how to use the specific tools
> or commands that allow you to open the ports for NetBIOS if you
> are blocking them, but the chances are that your VPN tunnel is allowing
> free flow of traffic through it.
>
> > any guidance would be appreciated.
>
> Routing? What about routing? Can you currently ping or use other
> simple traffic through the VPN IF you specific IP addresses instead
> of names? (If routing doesn't work nothing else is going to either.)
>
> --
> Herb Martin, MCSE, MVP
> Accelerated MCSE
> http://www.LearnQuick.Com
> [phone number on web site]
>
>
>
.

Relevant Pages

  • Routing issue with multihomed PC in Peer to Peer network.
    ... I recently picked up a job at a local chain of markets, and their setup is ... am pretty sure its a routing issue. ... There is a VPN that I configured at another site, ...
    (microsoft.public.windowsxp.accessibility)
  • Re: VPN + Domain Control => Possible?
    ... VPN server and all computers under company network ... How to Configure Windows 2000 to Be a Router How to display the routing table How to disable ip routing/forwarding on a W2K Pro? ... To setup a Windows 2000 server for VPN, open Routing and Remote Access ... ...
    (microsoft.public.windowsxp.work_remotely)
  • Re: Trusting Domains
    ... They are not in the same forest. ... created the trust between. ... I have DNS setup on both sides. ... Do you have name resolution working between forests, via the VPN link? ...
    (microsoft.public.win2000.active_directory)
  • 2003 VPN and file sharing and Sequel Server Issues
    ... Needed to activate remote access and routing ... to setup a VPN. ... Went through the process and when complete file access is ...
    (microsoft.public.windows.server.networking)
  • Re: Creating a trust between 2 Windows 2000 Domains
    ... > and one domain from an external source. ... We want to put a trust in so ... > When I try to setup a trust via AD Domains & Trusts I receive an error ... If you are working across routers (likely in your VPN situation) you ...
    (microsoft.public.win2000.active_directory)