Re: External Trust - unable to assign permissions
- From: "Miha Pihler [MVP]" <mihap-news@xxxxxxxxxxx>
- Date: Mon, 11 Sep 2006 18:08:39 +0200
Hi,
Some of my comments are in-line...
"Wayne" <Wayne@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:26FB1715-08AE-4397-9298-3B4964C37EC6@xxxxxxxxxxxxxxxx
I have setup a 2 way external trust to a recently acquired domain(B) from
our
domain(A). Both domains are Windows 2003 Server and in mixed mode. Domain
Controllers are pointed to a common WINS database.
Issue- I am unable to assign permissions on a share to Global groups or
users between Domain(A) and Domain(B).
Proper and recommended way for doing this would be to create a Domain Local
Group in Domain B and assign this group permissions on resources. Then add
Global group from domain A to Domain Local Group in Domain B.
I have relied on Netbios to setup the share as the seperate DNS's are not
talking to each other yet.
I can \\Fileserver\sharename from a fileserver in Domain(A) from Domain(B)
but I am unable to assign NTFS permissions on the share on
Domain(A)\\Fileserver\sharename. I get there error (Name not found)
Question: Is Netbios sufficient to establish the share permissions for an
external domain?
It looks like you will have to fix some resolution problems. My advice is to
use DNS. Since you are running Windows Server 2003 you can use conditional
forwarding to configure DNS server in domains A and B to point to correct
servers for resolution. Personally I would fix name resolution (DNS) issue
first -- and then work on other issues that might remain.
Let me know if you need more help with this.
--
Mike
Microsoft MVP - Windows Security
.
- Follow-Ups:
- Prev by Date: Re: Rename AD domain name
- Next by Date: Re: Rename AD domain name
- Previous by thread: Windows 2003 DHCP Server Clustering
- Next by thread: Re: External Trust - unable to assign permissions
- Index(es):
Relevant Pages
|
