Solved

Unable to create trust relationship btwn 2 windows 2000 advanced server

Posted on 2004-08-09
9
755 Views
Last Modified: 2010-04-12
HELP!

I am trying to get my trust relationship to work btwn my existing domain to a newly created one.

While on my current domain controller when i add the trust relationship of the new domain i get the following error:

The newdomainname cannot be contacted.  If this domain is a windows domain, the trust cannot be setup unitl the domain is contacted.  Click canecl and try again later.  If this is an interoperable non-windows Kerberos realm and you want to set up this side of the trust click ok.  

what's wierd is i dont get this msg on the newly created domain.  it just says something about cannnot verify or validate at this time.  another thing, while on the newdc, i can access my currentdc by typing  \\currentdc machine.  accessable only one way - kinda.

i'm checking out article #Q312003 and just added WINS but still nothing.
note1: when trying to ping the newdcname, it returns back w/a different ip than on the actual newdc.
note2:testing the newdc on a virtual server running vmware.

Thanks for any other pointers you may have.

ST
0
Comment
Question by:ststst
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
9 Comments
 
LVL 3

Expert Comment

by:_treySter
ID: 11756401
Windows 2000 relies on DNS heavily.  Check your DNS setup on BOTH servers and make sure there are entreis for both host names.
0
 
LVL 22

Expert Comment

by:Paka
ID: 11756589
The problem could be in many places.  As treySter pointed out DNS is the main name resolution system for W2K.  Check and double check DNS to make sure there are no problems.  Your wrong IP could be a manually created A record in your zone.  After that, make sure you don't have any entries in your HOSTS and LMHOSTS files.  Finally, check your WINS to see what it has for registrations.  (Bring up WINS, search for records like the NetBIOS name of your servers (real and VMWare).
0
 

Author Comment

by:ststst
ID: 11756797
Treyster

i tried adding the host to the currentdc's DNS and it defaults to newdc.currentdc.com.  is that the way its supposed to be?  Same issue on newdc.

ST
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 

Author Comment

by:ststst
ID: 11756955
Paka,

WIns on my currentdc shows the newdc w/the wrong ip address.  how can i clear/change the wins ip info?

ST
0
 

Author Comment

by:ststst
ID: 11757018
Paka,
one other note, when i look in wins on the newdc, the currentdc does not show.

ST
0
 
LVL 3

Accepted Solution

by:
_treySter earned 250 total points
ID: 11757383
If they are two different domains then you need an additional forward lookup zone for the newdc on the currentdc's DNS.
0
 

Author Comment

by:ststst
ID: 11757663
I'm assuming i would need to do on both domain/DNS? and also which option to choose, Active dir-integrated, standard primary, or std 2ndary?

thanks.

ST
0
 

Author Comment

by:ststst
ID: 11758063
HEY HEY HEY!!  
Just added forward zone to both using AD integ and it got validated.

thanks so much for your help!!

ST
0
 
LVL 3

Expert Comment

by:_treySter
ID: 11758547
Glad you got it! -_treySter
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Postmortem reporting allow us to examine mistakes in a way that focuses on the situational aspects of a failure’s mechanism and the decision-making process of individuals proximate to the failure. Read our guide on how to handle IT post-mortem repor…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question