Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

The trust relationship between the primary domain and the trusted domain failed. Microsoft Windows NT ID: 0xc00206fc.

Posted on 2004-08-10
12
Medium Priority
?
3,187 Views
Last Modified: 2008-01-09
I am trying to manage via the exchange administrator program, mailboxes on a EX 5.5 server running on a WIN2K machine at a small remote site.  Upon double clicking any given mailbox I recieve the following error: "The trust relationship between the primary domain and the trusted domain failed. Microsoft Windows NT ID: 0xc00206fc." After clicking ok, I get the properties pages but everything is grayed out. I have searched Google and hit one result that was pretty similar to my problem but the only solution there was a MS knowledgebase article 321165, which unfortunately did not solve the issue.

I have been previously able to complete this task and only recently started to experience the trouble. I have my main EX 5.5 site on an NT4 box and am able to manage boxes on this remote site via that machine, just not from the W2K machine. I have verified the trusts between the two domains of my main site and my remote site. I have not deleted and remade the trusts due to the fact that everything else seems to be working, (file access, printing, etc.) and that the trusts verified. Any help in the right direction is greatly appreciated.
0
Comment
Question by:shirelabs
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
12 Comments
 
LVL 7

Expert Comment

by:jaguarpriest
ID: 11764112
This may sound dumb, but here goes. Have you thought of simply Terminal Service to that machine. FOrward port 3389 to that machine and you'll be able to simple TS to it and accomplish your tasks to that remote site.

Hope this helps as an idea for you.

Best of luck

jaguar
0
 

Author Comment

by:shirelabs
ID: 11764325
Jaguar;

This is a nice idea however, the problem exists at the machine at the remote site. (near as I can tell) As I mentioned before, I can administer the mailboxes from my main site that is on the NT4 machine so this problem is really rather more an inconvenience than a "work stoppage". Thanks for your input though.
0
 
LVL 6

Expert Comment

by:nbishop1979
ID: 11765605
We occasionaly get this error when managing a users mailbox, and I find the easiest thing to do is a directory export, verify the information and then import it again.
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 12

Expert Comment

by:BNettles73
ID: 11778305

Did you check the remote site Exchange and make sure it can see the Administrative User or Groups at the Org > Site > Server level? If it is occurring when you open a particular mailbox there may be a problem with the SID on the NT account. If all the users are located in a different domain then there have you tried resetting the trusts between domains?

Somewhere there is a breakdown while it is trying to process the ACLs ... either the trust relationship between central and remote domain - unresolved SID at the ORG > Site > Server level ... or on the mailboxes themselves ...
0
 
LVL 12

Expert Comment

by:BNettles73
ID: 11778325
"I have been previously able to complete this task and only recently started to experience the trouble. I have my main EX 5.5 site on an NT4 box and am able to manage boxes on this remote site via that machine, just not from the W2K machine."

- Check the Permissions at the server level on the W2K machine
- Make sure the W2K machine isn't having any issues contacting the DC
- Check your trusts from the remote site ... do those users access resources in your main site?
0
 

Author Comment

by:shirelabs
ID: 11998904
I have to this point:

1. deleted and recreated the trusts
2. checked the permissions at the server level on the w2k machine
3. Made sure there are no contact issues between the w2k machine and the PDC at the main site
4. checked the permissions at the ORG -> Site -> and Server levels of Exchange Admin as well as checking for unresolved SID's or accounts (none found)
5. Reconfirmed that the error I get only occurs when 'I try to administer any mailbox via Exchange Administrator program at the W2k domain. If I administer mailboxes on the remote site from the NT4 PDC at the main site, all is well.

I am interested in the idea that nbishop1979 mentioned regarding a directory export, verify, and import but have never done it before so I am unsure of the exact process and reprecussions. If any of you are reasonably sure that this will work to solve this issue, would one of you mind explaining a bit more in detail of how to go about this? Thanks agin for all your valuable suggestions.
0
 
LVL 12

Expert Comment

by:BNettles73
ID: 14262722
Everytime I've ever seen this issue was when there were ACLs or messed up account names. I told him what the problem was and nbishop told him how to check it. He never responded so I assume he got it fixed, at least I hope.

Brian
0
 
LVL 96

Expert Comment

by:Bob Learned
ID: 14501255
Did you miss the post from shirelabs at 09/07/2004 01:17PM EDT?

"I am interested in the idea that nbishop1979 mentioned regarding a directory export, verify, and import but have never done it before so I am unsure of the exact process and reprecussions."

Bob
0
 

Author Comment

by:shirelabs
ID: 14531213
This issue has been resolved. We came to no real conclusion on the issue do to any of the suggestions here. The final solution was to completely rebuild the W2k domain and establish a new trust with the NT 4.0 Domain that was hosting the Exchange 5.5 Server.

Thank you to all who contributed potential solutions, it was unfortunate that none of them seemed to resolve our issue. Good luck to all.
0
 

Accepted Solution

by:
modulo earned 0 total points
ID: 14560795
PAQed with points refunded (500)

modulo
Community Support Moderator
0

Featured Post

New benefit for Premium Members - Upgrade now!

Ready to get started with anonymous questions today? It's easy! Learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
how to add IIS SMTP to handle application/Scanner relays into office 365.

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question