Solved

Setting up Win 2003 Trusts

Posted on 2006-07-12
3
185 Views
Last Modified: 2010-03-18
Hello,

I am trying to setup a trust between domainA and domainB (both 2003 server).  They are physically in different states but are connected via a VPN tunnel.

when I try to setup the trusts, I get a message that the specified domain cannot be contacted.  I'm sure this is a DNS issue.  I created a new forward lookup zone for the domain, but it really didn't seem to help and I am sure I am doing something incorrectly.

Thanks for the help.

- Chris
0
Comment
Question by:caw01
  • 2
3 Comments
 
LVL 13

Accepted Solution

by:
prashsax earned 500 total points
ID: 17093600
Yes, you need to create a secondary zone of the other domain on your DNS server.

Then on the remote Primary DNS server, specify the IP address of this server for zone transfer.

With this your secondary DNS zone would copy all the records and start resolving the names for other domain.

Same would have to be done on other side. Create a secondary zone of your domain on other side and specify its IP address in zone transfer.

0
 

Author Comment

by:caw01
ID: 17093914
Ok, done.  Now I need to create the trust, but I am not sure what kind of trust I want to build.  

I DO NOT want DomainB to have Administrative rights over DomainA.

Any thoughts and or suggestions?
0
 
LVL 13

Expert Comment

by:prashsax
ID: 17093965
By default even if you create a two way trust other domain admin will not have admin rights in your domain. Nor will you have admin rights on this domain.

All you both can do is to provide permision to other domain users access to shared resources in your domain.

So, don't worry about him having admin rights on your domain.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

735 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question