IIS 6 - Windows Authentication to a trusted domain fails
Posted on 2004-10-14
I am in the process of deploying sharepoint in an extranet environment.
All external users have an account created on the extranet server (Domain B) and are able to authenticate.
All internal users have accounts on a seperate server (Domain A). I have setup a one-way trust between Domain A and Domain B.
I have added a group on Domain B called "Internal Accounts" and successfully added users from Domain A.
Within the sharepoint portal I have granted "Reader" access to the "Internal Accounts" group.
When an internal user attempts to login, they receive an internal 500 error.
Error Code: -1073740781 (0xc0000413) - Login Failure
If I attempt to login using an account that doesn't exist, I receive an authentication error.
Since I am receiving an Internal 500 error for the problem above, I would assume that Sharepoint does recognize that the user exists, but cannot process some information.
Could this have something to do with the way that Sharepoint impersonates user accounts. Is it possible that even though I have setup the trust, that the impersonated account does not have permission to Domain A's active directory.
Does anyone know if this is a Windows issue I am having or Sharepoint issue?