 |
| Register | FAQ | Members List | Calendar | Links | Search | Today's Posts | Mark Forums Read |
|
||||||||
|
|
#1
11-14-2006, 06:09 PM
|
Trust issues
Hi,
We have recently aquired a company who have all their servers in Windows 2000/2003 domain NEWCOMP.COM. I have all of our servers in EXISTING.LOCAL We want to create a trust relationship between the domains, however, everytime I try from NEWCOMP.COM in Active Directory Domains and Trusts I get the message that the domain controller for EXISTING.LOCAL could not be found and is it kerberos? I have allowed a zone copy of both the EXISTING.LOCAL and NEWCOMP.COM domains on each others respective DNS servers, however, I notice in the new company that they have a single instance of the NEWCOMP.COM domain on their DNS server in the forward lookup zone. In ours, we have two: _msdcs.EXISTING.LOCAL and EXISTING.LOCAL Its my guess that the DC's are located inthe _msdcs zone and this is not the one that is replicating - the EXISTING.LOCAL domain only is replicating. Any advice as to how to get the trust relationship established please? Many thanks in advance. X Change 
|
|
#2
11-14-2006, 06:33 PM
|
|||
|
|||
|
Re: Trust issues
> We have recently aquired a company who have all their servers in Windows
> 2000/2003 domain NEWCOMP.COM. > I have all of our servers in EXISTING.LOCAL > > We want to create a trust relationship between the domains, however, > everytime I try from NEWCOMP.COM in Active Directory Domains and Trusts I > get the message that the domain controller for EXISTING.LOCAL could not be > found and is it kerberos? Usually its due to no WINS Servers (for NetBIOS resolution) in a ROUTED environment. Mostly AD/Win2000+ tries to use DNS but some things are still dependent on NetBIOS resolution. Since External trusts are partially for supporting NT domains they are still (at least partially) dependent on the NetBIOS resolution working. If you already have the WINS servers then likely the problem is one or both of: 1) Not all machines, especially DCs being WINS clients 2) Multiple WINS servers (two diffferent domains) which are NOT yet replicating. Make all machines in each domain WINS clients and set any additional WINS Servers to replicate fully. > I have allowed a zone copy of both the EXISTING.LOCAL and NEWCOMP.COM > domains on each others respective DNS servers, however, I notice in the > new company that they have a single instance of the NEWCOMP.COM domain on > their DNS server in the forward lookup zone. You will -- eventually -- need to hold a copy of the "other zone/domain" on the opposing DNS servers (or otherwise arrange DNS resolution, i.e., conditional forwarding or stub zones instead of full zones.) > In ours, we have two: > _msdcs.EXISTING.LOCAL and > EXISTING.LOCAL > > Its my guess that the DC's are located inthe _msdcs zone and this is not > the one that is replicating - the EXISTING.LOCAL domain only is > replicating. > > Any advice as to how to get the trust relationship established please? Make NetBIOS resolution work. > Many thanks in advance. > -- Herb Martin, MCSE, MVP Accelerated MCSE http://www.LearnQuick.Com [phone number on web site] "X Change" <(E-Mail Removed)> wrote in message news:(E-Mail Removed)... > Hi, >
|
 |
| Tags |
| issues, trust |
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
