Re: pls Help!! After Trust, cannot access from local to foreign do
- From: "Jorge Silva" <jorgesilva_pt@xxxxxxxxxxx>
- Date: Tue, 9 May 2006 20:16:07 +0100
Hi
Can you tell us how your dns configuration is set up on both domains?
Are the clients DNS properties pointing to their local server in their
domain?
Can you post here the results for ipconfig /all for both servers?
If you run dcdiag /v /c /e are you getting any errors?
--
I hop that helps
Good Luck
Jorge Silva
MCSA
Systems Administrator
"chua" <chua@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:06FD0E65-811C-49E7-BA73-96765B8CB5F6@xxxxxxxxxxxxxxxx
Hi Paul,
Thanks for replying.
Actually i doing migration for a customer. Their existing environment
structure is weird. They have 2 domains where both domains have users.
Fileserver is at source domain. Target domain users login to local domain
and
uses UNC method to access filesever in remote domain. When prompt for
authentication, they will use the source domain credentials to login.
1) at the fileserver shared folder, i have added the target domain users
in
the NTFS permission. but once they click the shared, they will get Access
Denied.
I can't possible redo the security permission on the fileserver as they
have
400 of users. i will be a pain to re-assign.
2) i have tried both method. Forest-wide and Selective Authentication.
Which is the better approach? Security is not an issues as both domain
users
from cross-forest should access one another resources.
3) once i remove the trust, the users wil get the prompt for
authentication
box again. Which this is what i want to retain after trust.
steve
"Paul Williams [MVP]" wrote:
But after trust, users at target domain cannot access
resources(fileserver) at source domain anymore..which they used to be
able
to.
They're now probably getting access denied. You need to grant
permissions
to a group to allow access. In the past, I assume the users were
providing
credentials for the local domain when prompted when accessing from the
remote domain?
Any workaround for this? where i can establish trust and users at
target
domain still able to use UNC path to access resources at source
domain??
You need to define access by settings permissions on the objects in
question -shared folders and NTFS permissions in your example.
Error after trust: "the machine you are logging onto is protected by an
authentication firewall."
What options did you choose when you defined the trust? Have you perhaps
enabled selective authentication? Check the trust properties.
--
Paul Williams
Microsoft MVP - Windows Server - Directory Services
http://www.msresource.net | http://forums.msresource.net
.
- Follow-Ups:
- References:
- Re: pls Help!! After Trust, cannot access from local to foreign domain
- From: Paul Williams [MVP]
- Re: pls Help!! After Trust, cannot access from local to foreign domain
- Prev by Date: Re: New DC in Remote Site
- Next by Date: Re: VPN issue
- Previous by thread: Re: pls Help!! After Trust, cannot access from local to foreign do
- Next by thread: Re: pls Help!! After Trust, cannot access from local to foreign do
- Index(es):
Relevant Pages
|
Loading
