Re: setting up trust relationship between windows 2000 domain and
- From: "Krista Ladd" <KristaLadd@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 27 Apr 2005 15:45:48 -0700
James you said you solved this problem by setting up a common WINS sever how
did you go about doing this I am getting the same error you were on a trust
am try to create any help you could give me
Thanks
Krista
"James Sanger" wrote:
> Herb,
>
> Thanks for the quick response.
>
> I have setup a common WINS server and now trusts are working between
> the two domains. Problem solved.
>
> Again thanks for the help
>
> Regards
>
> James
>
> "Herb Martin" <news@xxxxxxxxxxxxxx> wrote in message news:<O44c#D70EHA.2568@xxxxxxxxxxxxxxxxxxxx>...
> > "James Sanger" <b8rnaby@xxxxxxxxxxx> wrote in message
> > news:55eba53d.0411260134.a04dd8d@xxxxxxxxxxxxxxxxxxxxx
> > > I am trying to setup a trust relationship between a windows 2000
> > > domain and a windows 2003 domain.
> > >
> > > The scenario is:-
> > >
> > > 2 domains:- - one windows 2000 domain - CHARLIE
> > > - one windows 2003 domain - barnaby.bloggsonline.com
> > >
> > > The CHARLIE domain is in its own forest, at a separate site and on a
> > > subnet of 192.168.0.???
> > >
> > > (I know the domains should be of the .local variety in DNS but this is
> > > the way things were setup by a previous admin, the CHARLIE domain was
> > > an in place upgrade of an NT domain)
> >
> > > The barnaby.bloggsonline.com is in its own forest, at a separate site
> > > and on a subnet of 10.1.1.??
> > > Both sites are connected via a VPN connection.
> > > Both sites are running their own DNS.
> > >
> > > I have created a secondary forward lookup zone in the CHARLIE domains
> > > DNS for the barnaby.bloggsonline.com domain.
> > > I have created a secondary forward lookup zone in the
> > > maidstone.staonline.com domains DNS for the CHARLIE domain.
> >
> > So it is not likely a DNS problem unless this is another
> > case where the infamous single tag DNS domain name
> > causes problems (charlie.), but you seem familiar with the
> > issue so unless you haven't reviewed the KB articles on
> > that subject this is not likely the problem.
> >
> > > Both Domain Controllers can now ping each others FQDN. I have run
> > > nslookup, dcdiag and netdiag tools on both domains and all tests are
> > > successful.
> > >
> > > When I setup the trusts and then verify them from the Windows 2000
> > > domain, I receive the following error:-
> > >
> > > The secure channel (SC) query on domain controller \\sidcupdc.sta of
> > > domain CHARLIE to domain barnaby.bloggsonline.com failed with error:
> > > The security database on the server does not have a computer account
> > > for this workstation trust relationship. An SC reset will now be
> > > attempted.
> >
> > Well, until we got here, I was perfectly prepared to tell
> > you that it's due to not having a common WINS database,
> > i.e., WINS Server(s).
> >
> > External Trusts are NetBIOS based (at least in part) and
> > so if you are on different subnets as you are, then you must
> > have all the DCs of each domain set as WINS clients of a
> > common WINS Server (set.)
> >
> > > Any help would be greatly appreciated.
> >
> > You are (likely) going to need the WINS server anyway even
> > if that is not your reported problem.
> >
> > And remember to set the DCs to be clients and to replicate
> > if you use multiple WINS Servers.
>
.
- Prev by Date: Re: Login Script running twice?
- Next by Date: RSoP
- Previous by thread: Accessing Active Directory Users & Computers on my desktop
- Next by thread: RSoP
- Index(es):
Relevant Pages
|
