Access Denied error - when setting trust between NT4 and 2003 domains

I am trying to setup a two-way trust between Nt4 and 2003 domains.  I am unable to do this becuase I am getting Access Denied error when I try from NT4 domain.  

I can map a drive from NT4 to access 2003 domain
I can PING servers from either domains
I am using LMHOSTS file
I have WINS

I am not sure what I am doing wrong here.

Any help is appreciated.

Thanks,
DGUNNA
dgunnaAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Darwinian999Commented:
First, make sure that you have the right info in your LMHOSTS file -

The entry for the W2003 DC that has the PDC emulator FSMO role must contain #PRE #DOM:W2003DOMAIN at the end of the line (where "W2003DOMAIN" is the NetBIOS name of the 2003 Domain).
There must be plenty of space characters (not tabs) between the name and the #PRE, because a NetBIOS name can be 16 characters long.
You have to load the LMHOSTS contents into the NetBIOS cache - froma command prompt, run NBTSTAT /R  (note that the /R is CaSe Sensitive)
Check the contents of the cache by running NBTSTAT /c  (note that the /c is CaSe Sensitive).

Now create a connection from the NT4 Domain to IPC$ on the 2003 DC that has the PDC emulator FSMO role, using admin credentials. ie

net use \\W2003PDC\IPC$ /user:W2003DOMAIN\Administrator /password:XYZ

Then you should be able to establish the trust.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
oBdACommented:
Might be that anonymous access is restricted in the W2k3 domain. In addition, make sure your lmhosts file is setup correctly.
Check these articles:

How to establish trusts with a Windows NT-based domain in Windows Server 2003
http://support.microsoft.com/?kbid=325874

How to Write an LMHOSTS File for Domain Validation and Other Name Resolution Issues
http://support.microsoft.com/?kbid=314108

Client, service, and program incompatibilities that may occur when you modify security settings and user rights assignments
http://support.microsoft.com/?kbid=823659
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.