Solved

join 2 seperate Windows 2000 forests

Posted on 2003-12-11
5
340 Views
Last Modified: 2010-08-05
We have two physical sites that have worked independately. we now have a hardware VPN established between the two Physical site..

I now would like to blue.local to be able to trust blue.com.
Both pysical sites use different IP subnets.  

How do i go about link the two sites in Windows 2000 server, so users can access the other sites without authenication issues ?


Many Thanks In advance for your help
0
Comment
Question by:itsol187
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 13

Expert Comment

by:ocon827679
ID: 9921771
Why not set up a 2-way trust between the domains?  You don't want to join them in a single forest if there is a possibility that there have been schema changes in one that are different than the other.
0
 
LVL 6

Expert Comment

by:Casca1
ID: 9921860
If the domains (and forests) are already in place, the only solution here is to follow ocon827679's suggestion and establish 2 one way trusts between the domains, unless you created one as a child domain of the other, I.E. Blue.com as the root domain in the forest, and Blue.local as the sub-domain.
0
 
LVL 18

Expert Comment

by:JConchie
ID: 9922577
Or go to Windows 20003 where inter-forest transitive trusts are possible....and you don't have to set up individual trusts with each individual domain.
0
 

Author Comment

by:itsol187
ID: 9927036
thanks for your feedback

i have tried to create a explicit trust relationship, but get the following message ..


The blue.com domain cannot be contacted.If this domain is a windows domain, the trusts cannot be setup utill the domain is contacted.


I can ping the IP address of the Windows DC at blue.com.  Am i missing something here ?
0
 
LVL 13

Accepted Solution

by:
ocon827679 earned 125 total points
ID: 9927624
Sounds like a name resolution problem.  These are both W2K domains right?  The easiest way to get them to see each other is to make each domains DNS a secondary of the other.  That way there will be a copy of the DNS in each domain.  Just go into the DNS manager and create a new forward lookup zone.  Select the zone to be a secondary and follow the instructions to add the other domains DNS.  Once the replication has occurred, you should be ableto set up the trust.
0

Featured Post

What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Learn why we support net neutrality and why the topic is important to all internet users.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question