[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

join 2 seperate Windows 2000 forests

Posted on 2003-12-11
5
Medium Priority
?
346 Views
Last Modified: 2010-08-05
We have two physical sites that have worked independately. we now have a hardware VPN established between the two Physical site..

I now would like to blue.local to be able to trust blue.com.
Both pysical sites use different IP subnets.  

How do i go about link the two sites in Windows 2000 server, so users can access the other sites without authenication issues ?


Many Thanks In advance for your help
0
Comment
Question by:itsol187
5 Comments
 
LVL 13

Expert Comment

by:ocon827679
ID: 9921771
Why not set up a 2-way trust between the domains?  You don't want to join them in a single forest if there is a possibility that there have been schema changes in one that are different than the other.
0
 
LVL 6

Expert Comment

by:Casca1
ID: 9921860
If the domains (and forests) are already in place, the only solution here is to follow ocon827679's suggestion and establish 2 one way trusts between the domains, unless you created one as a child domain of the other, I.E. Blue.com as the root domain in the forest, and Blue.local as the sub-domain.
0
 
LVL 18

Expert Comment

by:JConchie
ID: 9922577
Or go to Windows 20003 where inter-forest transitive trusts are possible....and you don't have to set up individual trusts with each individual domain.
0
 

Author Comment

by:itsol187
ID: 9927036
thanks for your feedback

i have tried to create a explicit trust relationship, but get the following message ..


The blue.com domain cannot be contacted.If this domain is a windows domain, the trusts cannot be setup utill the domain is contacted.


I can ping the IP address of the Windows DC at blue.com.  Am i missing something here ?
0
 
LVL 13

Accepted Solution

by:
ocon827679 earned 375 total points
ID: 9927624
Sounds like a name resolution problem.  These are both W2K domains right?  The easiest way to get them to see each other is to make each domains DNS a secondary of the other.  That way there will be a copy of the DNS in each domain.  Just go into the DNS manager and create a new forward lookup zone.  Select the zone to be a secondary and follow the instructions to add the other domains DNS.  Once the replication has occurred, you should be ableto set up the trust.
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
This article will help to fix the below errors for MS Exchange Server 2016 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
With just a little bit of  SQL and VBA, many doors open to cool things like synchronize a list box to display data relevant to other information on a form.  If you have never written code or looked at an SQL statement before, no problem! ...  give i…
Suggested Courses

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question