Solved

join 2 seperate Windows 2000 forests

Posted on 2003-12-11
5
337 Views
Last Modified: 2010-08-05
We have two physical sites that have worked independately. we now have a hardware VPN established between the two Physical site..

I now would like to blue.local to be able to trust blue.com.
Both pysical sites use different IP subnets.  

How do i go about link the two sites in Windows 2000 server, so users can access the other sites without authenication issues ?


Many Thanks In advance for your help
0
Comment
Question by:itsol187
5 Comments
 
LVL 13

Expert Comment

by:ocon827679
ID: 9921771
Why not set up a 2-way trust between the domains?  You don't want to join them in a single forest if there is a possibility that there have been schema changes in one that are different than the other.
0
 
LVL 6

Expert Comment

by:Casca1
ID: 9921860
If the domains (and forests) are already in place, the only solution here is to follow ocon827679's suggestion and establish 2 one way trusts between the domains, unless you created one as a child domain of the other, I.E. Blue.com as the root domain in the forest, and Blue.local as the sub-domain.
0
 
LVL 18

Expert Comment

by:JConchie
ID: 9922577
Or go to Windows 20003 where inter-forest transitive trusts are possible....and you don't have to set up individual trusts with each individual domain.
0
 

Author Comment

by:itsol187
ID: 9927036
thanks for your feedback

i have tried to create a explicit trust relationship, but get the following message ..


The blue.com domain cannot be contacted.If this domain is a windows domain, the trusts cannot be setup utill the domain is contacted.


I can ping the IP address of the Windows DC at blue.com.  Am i missing something here ?
0
 
LVL 13

Accepted Solution

by:
ocon827679 earned 125 total points
ID: 9927624
Sounds like a name resolution problem.  These are both W2K domains right?  The easiest way to get them to see each other is to make each domains DNS a secondary of the other.  That way there will be a copy of the DNS in each domain.  Just go into the DNS manager and create a new forward lookup zone.  Select the zone to be a secondary and follow the instructions to add the other domains DNS.  Once the replication has occurred, you should be ableto set up the trust.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Read about the ways of improving workplace communication.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question