Re: Question: Sharing resources between Forests
- From: Allen Firouz <AllenFirouz@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 28 Feb 2006 10:22:41 -0800
Those are your options. Users rarely like anything that they're not used
to... you just have to accept that :-)
The choice of which one you pick is yours. My preference is to create a one
way Trust relationship between the two domains, this way the administration
and management of accounts is easier. But pick the one that fits your
administrative, security and structural needs.
-Allen Firouz
"kelly" wrote:
Thanks! You guys are way to smart. Let me ask you this...the alternatives I.
offered were as follows:
1. Use the desktop icon that we have created (it is simply a shortcut to the
recource) and have your users logon with their given domain A credentials.
2. Create a trust between our respective networks.
3. Create local accounts on the server for the users needing access.
4. Bring your domain into our AD forest.
Are these fair alternatives? Would local user accounts on the server allow
them to
seamlessly access the resource? There biggest issue seems to be that they do
not like authenticating with their domain A credentials.
"Herb Martin" wrote:
"kelly" <kelly@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:F30F4681-484B-43CF-9106-70B03859A65A@xxxxxxxxxxxxxxxx
We have two networks, each contained within it's own forest, both running
Windows 2003 Server AD. The two networks are connected. We have a
directory
on network A that users on network B need access to. We have created
accounts
on network A for network B users.
So they have separate accounts? Then no trusts are necessary.
Currently we have been having them create a
shortcut to the shared resource and they authenticate using their network
A
credentials.
Perfectly reasonable if you users can deal with having two
separate logons (and passwords.)ou
Question: If network B users map a drive to the shared resource on network
A, check off "Reconnect at Logon", and "Connect using a.." option ( with
their network A crednetials) should the drive get mapped the next time the
machine is restarted? They are complaining that the drive failed to get
re-mapped.
Generally they will have to supply the password again since it is
totally unrelated to their current logon & password.
You might try a (logon) batch file that explicitly sets it up like this:
net use DRIVE: \\ServerName\ShareName * /user:DomainA\UseronDomainA
Change "DRIVE:" to '*' or the drive letter they prefer. The '*' after
the sharepoint is to request a prompt for the password.
Your other (perhaps better) choice is to setup a trust from B to
A and let the users access the files with a single logon.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
- References:
- Re: Question: Sharing resources between Forests
- From: Herb Martin
- Re: Question: Sharing resources between Forests
- From: kelly
- Re: Question: Sharing resources between Forests
- Prev by Date: Re: User Names and Commas
- Next by Date: Re: User Names and Commas
- Previous by thread: Re: Question: Sharing resources between Forests
- Next by thread: RE: Question: Sharing resources between Forests
- Index(es):
Relevant Pages
|
Loading
