Multiple Forests vs Single forest with child domains

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

I seem to be having some trouble finding all the information in one place,
and I'm just trying to collect the positives and negatives of two different
models I have to choose from.

I currently manage a single domain forest for my company with about 1300
user accounts and 180 servers. I have one person backing me up.

We are owned by a parent company, (who really doesn't provide us any
infrastructure) who has decided that we will be taking over the
infrastructure for another company owned by our parent. The company we'll be
managing will be about 500 users.

Our needs:
-Ease of administration. Not sure what kind of resources we'll be getting
(if any) from the new company.
-Seperation of brand names. Need to make sure they're still in name a
seperate entity.
-Access to our resources, as well as some new resources of their own.

The goods:
-We have an AD infrastructure in place.
-They don't. We'll be creating a new domain for them and rebuilding all
their workstations into our infrastructure.
-We are not set up with any kind of empty forest root domain.

The options:
A) Migrate our domain into a new forest with an empty root domain as a
child. Create a new child domain, also under the root domain, for the other
company.
B) Create a new domain for the other company and create a trust relationship
between them. Not sure what kind of administrative issues come up with this,
since I believe our organization will be managing user accounts and servers
on their domain.

Can you folks speculate on what the better option is, and maybe a little
bit of positives and negatives of each scenario? I'm doing as much reading
as I can, but (as with many business driven projects) the timeframe seems to
be getting shorter and shorter.

Thanks!
.

Relevant Pages

  • Re: AD Domain Question
    ... You have equal user accounts in the Root domain and in the Child domain? ... sounds like these resources don't have permissions to the Child domain ...
    (microsoft.public.windows.server.active_directory)
  • Re: Why A Coyote Revolution?
    ... trade and poor resources? ... agriculture are not available on this planet, ... sorts of auxiliary infrastructure -- plastics or rubber for seals, ... the technology to build fusion reactors or solar power satellites or ...
    (rec.arts.sf.written)
  • Re: [Full-disclosure] 0day: PDF pwns Windows
    ... resources, something the 0day can deprive the enemy of. ... If I want to knock out your infrastructure to render it unusable I'm ... em up attack, I necessarily won't even have to use my own resources. ... botnet would only serve as cover while the real attack happens. ...
    (Full-Disclosure)
  • Re: [Full-disclosure] 0day: PDF pwns Windows
    ... resources, something the 0day can deprive the enemy of. ... If I want to knock out your infrastructure to render it unusable I'm ... em up attack, I necessarily won't even have to use my own resources. ... botnet would only serve as cover while the real attack happens. ...
    (Full-Disclosure)
  • Re: [Full-disclosure] 0day: PDF pwns Windows
    ... resources, something the 0day can deprive the enemy of. ... If I want to knock out your infrastructure to render it unusable I'm ... em up attack, I necessarily won't even have to use my own resources. ... botnet would only serve as cover while the real attack happens. ...
    (Full-Disclosure)