Re: Trust between two Forests Fail
- From: John Kolodziejski <JohnKolodziejski@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 16 Feb 2007 07:45:40 -0800
"Herb Martin" wrote:
"John Kolodziejski" <JohnKolodziejski@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:9E07DD53-03F7-4832-98A9-7A087257D04A@xxxxxxxxxxxxxxxx
We are making progress. WINS AND DNS are working. WINS is Replicating on
both
sides. We are a Forward Look Up Zone in their Windows DNS and They are in
ours.
CONDITIONAL I hope. Never set two DNS Server sets to forward
unconditionally to each other -- it causes infinite loops and server
crashes.
Yes
I can now Vaildate both sides of the Trust on our DC, and the response is
"THE trust has been validated. It is in place and active"
If they try to do the same from their side, they are still prompted with a
sign on box. No matter what user name and password they put in, the log on
fails.
Username would include DOMAIN, there Domain\Username form or another
one that is equivalent.
When we do it on our side to theirs we do not enter the Domain\User just the
user and it works. Why would it not work in reverse. Also, if the log on box
say" Enter a user with permissions to administer Trust for the other Domian,
wouldn't automaticlly validate against the other domain?
Also, I have tried entering aaa\user and aaa.aaa.aaa\user from their side
and it still does not work
If they click on "Save As" the file with details about the status of names
associated with this trust on thier side, it reflects the approiate
information as compaired to the same file on our side.
Either the other uses isn't an Admin or isn't properly authenticating over
there -- or their domain isn't properly sending the credentials to your
domain.
Exactly, their domain isn't properly sending the credentials to our domain.
How do we verify this or find out way their domain isn't properly sending the
credentials to our domain. If we can fix this, I thinh the problem will be
solved.
I can access their Active Directory from my side and can nodify users
(using
Administrative Tools, Active Directory Users and Computers" "Connect to a
Domain", They can see my active directory using the same process in
reverse,
but they can not do anything, everything is grayed out.
Have you given them PERMISSIONS (really made their admin a member of
your Domain Admins group)?
YES, he can Remote Desktop to one of our servers, log in with his user name
for our domain and administer our servers.
.
I feel the last problem we are having is clearing the problem of why the
are
being prompted with the log on box.
Does any one have any ideas of what the problem may be?
- Follow-Ups:
- Re: Trust between two Forests Fail
- From: Herb Martin
- Re: Trust between two Forests Fail
- References:
- RE: Trust between two Forests Fail
- From: John Kolodziejski
- Re: Trust between two Forests Fail
- From: Herb Martin
- RE: Trust between two Forests Fail
- Prev by Date: Re: better way to search for users info in AD
- Next by Date: Re: Reducing ADAM Accesses
- Previous by thread: Re: Trust between two Forests Fail
- Next by thread: Re: Trust between two Forests Fail
- Index(es):
Relevant Pages
|
