Cross domain authentication

I have two domains merging, aaa.local (2003 native) and bbb.internal (2000 native).

I have configured cross domain trusts and they validate ok.

I can't add the bbb.internal\enterprise admins group to aaa.local\enterprise admins because the locations box of 'Select users, Contacts or groups' contains only the aaa.local domain.

This does not happen when i look at the locations box of permissions on the primary DC's system hard disk, in this case it shows the bbb.internal domain as well as the local domain.

Why is this?
Wibble_Asked:
Who is Participating?
 
Kini pradeepConnect With a Mentor Principal Cloud and security consultantCommented:
if i am not wrong you are trying to migrate users/computers across to the new domain using active directory migration tool ?

http://support.microsoft.com/kb/326480
you must have gone through this.
0
 
Kini pradeepPrincipal Cloud and security consultantCommented:
how many domain controllers do you have ?

is this happening on a client computer ?

when you login does the option at MS GINA show the trusting or the trusted domain ( list both)

if yes can you type set l on the cmd and check the authenticating DC.

if more than 1 DC is replication broken in any way.

what does  primary DC's system hard disk mean, if you could please explain.

Thanks,
0
 
Wibble_Author Commented:
how many domain controllers do you have ?
    4 in bbb.internal, one in aaa.local
is this happening on a client computer ?
    all machines, dc or no, but specifically on my clinet (on aaa.local)
when you login does the option at MS GINA show the trusting or the trusted domain ( list both)
    both are visible (users can log on to either domain, assuming accounts exist)
if yes can you type set l on the cmd and check the authenticating DC.
    authdc = dc01.aaa.local
if more than 1 DC is replication broken in any way.
    nope, (there is one ghost dc on bbb.internal though)
what does  primary DC's system hard disk mean, if you could please explain.
    when setting security permissions on \\dc01\c$ the add users location box displays the bbb.internal location, however this is not displayed when adding users to the domain administrators group.

I guess i have missed something out. I there a procedural doc anywhere for merging two domains?
0
 
Wibble_Author Commented:
no, for now i'm actually just trying to set up admin accounts that have rights in both domains. I thought that i could do this by adding the domain admins from one domain to the domain admins group on the other domain, but it wont let me :(
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.