Solved

Setting up a trust between 2 seperate domains.

Posted on 2006-06-27
6
459 Views
Last Modified: 2012-05-05
Setting up a trust between 2 seperate domains. My domain is a 2k3 domain. The other is a 2000 domain.  I need to setup a trust between the two domains.  We are able to ping computers inbetween both domains.  I've tried to set this up in the AD Domains and Trusts with no success.  

We are eventually going to merge into one active directory. Our site will be domain.com while they will be other.domain.com.

Thanks.
0
Comment
Question by:cknoderer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 4

Expert Comment

by:johanvz1
ID: 16994824
Hi,

I know that you can use the ADMT active directory migration tool to migrate from a Win2k domain to a Win2k3 domain. But establishing  trusts check here hopefully it helps:

http://www.microsoft.com/technet/community/columns/profwin/pw0303.mspx

Also what does your event logs bring up?.

Kind Regards,

Johan Van Zyl
0
 

Accepted Solution

by:
cisco_2k2 earned 168 total points
ID: 16995419
Cknoderer,

1. On Server1 log on and access DNS.
2. Right Click on the zone domain1.com and click properties.
3. Got to the transfers section and configure the server to allow zone transfers to the SERVERA IP address.
4. On SERVERA log on and access DNS.
5. Right click on the zone domain2.com and click properties.
6. Go to the transfers section and configure the server to allow zone transfer to the Server1 IP Address.
7. Still on SERVERA, create a SECONDARY zone called domain1.com.
8. Indicate that the Master server for the domain1.com zone it Server1.
9. On Server1, create a zone called domain2.com.
10. Indicate that the Master server for the domain.com zone is SERVERA.
11. Check that the Zones are correctly populated by accepting your changes and then double-clicking on the new zone.

Now configure your trusts.
0
 
LVL 13

Assisted Solution

by:2hype
2hype earned 166 total points
ID: 16995530
Configure them in Active Directory Domains And Trusts.

Ensure you have a VPN setup between the 2 sites.  (I assume you do because you can ping the other)


On Server A

Go into your DNS
Right Click your server name and click properties
Click the Forwarders Tab
Click New under DNS Domain:
Type the Domain name of the second location - ex DomainB.whatever.local
Click OK.  Now Highlight the domain you created and Enter the IP Address of the DNS Server on that Domain in the Bottom Box and Click Add.  That way it can resolve Computer Name / Domain Info on the other site.

Now go to Domains and Trusts
Right click the server name and click properties
Click the Trusts Tab.
Click New Trust on the bottom
Click Next
Now Enter the Full DNS Name of the other site - ex DomainB.whatever.local
Click Trust with a windows Domain.
Click Next.
Keep following through the steps.

In the past I usually just create each side sepratly.  I do the above on both server. Rather than having 1 side create it on both.  But it should work creating it all from the one side.
0
 
LVL 7

Assisted Solution

by:Kumar_Jayant123
Kumar_Jayant123 earned 166 total points
ID: 16999991
Hi,

Trust in Windows Servers require both FQDN and NetBIOS name resolution.

Ensure that the servers have the Secondary zones of the other domains and the WINS Server are replicating with the WINS Server of the other domain.

Incase you do not want WINS replication you need to have LMHOST entry for the other domain in Each domain controler.

Following is a link for LMHOSTS creator.

http://bflinux.slu.edu/LSI/tools/lmhosts.html

Hope this helps...
Kumar
0

Featured Post

Why You Need a DevOps Toolchain

IT needs to deliver services with more agility and velocity. IT must roll out application features and innovations faster to keep up with customer demands, which is where a DevOps toolchain steps in. View the infographic to see why you need a DevOps toolchain.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

737 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question