RE: Trust between two Forests Fail
- From: John Kolodziejski <JohnKolodziejski@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 15 Feb 2007 12:35:00 -0800
We are making progress. WINS AND DNS are working. WINS is Replicating on both
sides. We are a Forward Look Up Zone in their Windows DNS and They are in
ours.
I can now Vaildate both sides of the Trust on our DC, and the response is
"THE trust has been validated. It is in place and active"
If they try to do the same from their side, they are still prompted with a
sign on box. No matter what user name and password they put in, the log on
fails.
If they click on "Save As" the file with details about the status of names
associated with this trust on thier side, it reflects the approiate
information as compaired to the same file on our side.
I can access their Active Directory from my side and can nodify users (using
Administrative Tools, Active Directory Users and Computers" "Connect to a
Domain", They can see my active directory using the same process in reverse,
but they can not do anything, everything is grayed out.
I feel the last problem we are having is clearing the problem of why the are
being prompted with the log on box.
Does any one have any ideas of what the problem may be?
Thanks
"John Kolodziejski" wrote:
Also, when a user enters a FQDN in Windows explorer on Company A's Side for a.
computer on Company B's side, they connect to the computer and can see public
shares. If company B trys the same thing for Company A, they are challenged
with a log on box.
Niether side can see the other sides Donain in Windows Explorer " Network
Places" "Microsoft Windows Network", so browsing does not work.
"John Kolodziejski" wrote:
I work for a company that has just been purchased by another company. As per
Microsoft Technet “When to create a Forest Trust” a Forest trust fits our
situation perfectly. We are attempting to create a Forest level-two-way trust.
We have run the complete check list “ Checklist: Creating a forest trust “.
Both companies are running only Windows 2003 Servers. Both Domain and Forest
Functional Levels are set to the highest Level. Company A is running all
services under Windows Active Directory (DNS, WINS and so on), Company B is
not running DNS under Windows Active Directory. They are using Linux. We have
set up secondary zones in each DNS name space and we have established Zone
transfers between our two DNS Servers. A DNS lookup does work for both sides.
When company A tries to complete a Forest Level Trust, the trust Wizard
works, and the trust is completed and shows on both active directories, but
when a “Validate ” is done on “Incoming” and “Out Going” we receive an error.
“the Trust cannot be validated for the following reasons: The outgoing trust
was successfully validated. Secure channel (SC) reset on Domain Controller
\\x.companyBdomain.com of domain companyB.com to domain companyA.com failed
with error. There are currently no logon servers available to service the
logon request.
When company B tries to complete the trust wizard, they enter in our
company’s domain name, and they get an error, “Domain not found”.
We have search all over an only came up with a KB document that allies to
Windows NT 4 and earlier.
Can anyone point us to a resolution of our problem?
Thanks,
John
- Follow-Ups:
- Re: Trust between two Forests Fail
- From: Herb Martin
- Re: Trust between two Forests Fail
- Prev by Date: Re: Windows 2003 RC2 and Windows 2003 domain Controllers
- Next by Date: Re: DNS Server problem is driving me nuts...
- Previous by thread: Re: Trust between two Forests Fail
- Next by thread: Re: Trust between two Forests Fail
- Index(es):
Relevant Pages
|
