Solved

Setting up a trust between two 2003 Servers

Posted on 2006-11-26
9
328 Views
Last Modified: 2011-10-03
Hi all,

I am having a problem setting up a trust relationship between two domains.  One server is running Server 2003 standard and the other one is a new server that I am setting up that came with Server 2003 R2.

When I try to setup the trusts between the two I receive a message saying that

The New Trust Wizard cannot continue becasue the specified domain cannot be contacted.

Either the domain does not exist, or network or other problems are preventing connections.

I can ping each of the servers so there is connectivity.  But I need them to be able to talk to one another.  I'm sure I am doing something stupid here, but have no clue as to what.  Any help would be greatly appreciated!
0
Comment
Question by:vbowman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 85

Expert Comment

by:oBdA
ID: 18014699
You need a working DNS resolution between the two domains, and you need to create the trust using the domain's FQDN name.
To get this name resolution, either setup secondary forward lookup zones for the respective other domain on each DNS servers and let them replicate, or use conditional forwarding (Properties of the DNS servers, tab "Forwarders") for the respective other domain on each DNS server.
0
 

Author Comment

by:vbowman
ID: 18014955
I tried the first option you mentioned, but I get Zone not loaded by DNS Server.  I guess I missed a step.
0
 
LVL 85

Expert Comment

by:oBdA
ID: 18015055
You need to add the secondary server as name server to the properties of the zone on the DNS server that is the primary for the domain, otherwise the DNS server holding the primary zone won't allow the replication.
0
Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

 

Author Comment

by:vbowman
ID: 18015321
I am sorry I must be dense today.  I am not sure I understand what you mean with the last entry.  I did add seconday forward lookup zones for both of the domains.  Do you mean I also need to add them in the primary zone?  If so, how do I accomplish this?  Thanks in advance!  
0
 
LVL 85

Expert Comment

by:oBdA
ID: 18015776
You need to register the secondary DNS servers as valid DNS servers on the zone hosting the primary zone; if the primary DNS server doesn't know the sceondary, it will refuse the replication of the zone.
Look in the properties of the zone on the primary server, there should be a tab "DNS servers", where you can define to which DNS servers can be replicated.
0
 

Author Comment

by:vbowman
ID: 18015824
Do you mean under properties of domain.local under the forward lookup zone?  Coz I do not see that tab.  Maybe I am totally in the wrong place.  All I see is Zone Transfers.

0
 
LVL 85

Accepted Solution

by:
oBdA earned 500 total points
ID: 18018061
Yes, the Zone Transfers is the one.
0
 

Author Comment

by:vbowman
ID: 18023961
That is where I did set it up.  Still no trust.  Darn, any other thoughts?
0
 

Author Comment

by:vbowman
ID: 18025290
I think I am setup!  Thanks for all your help.  You are a gem.
0

Featured Post

Ransomware: The New Cyber Threat & How to Stop It

This infographic explains ransomware, type of malware that blocks access to your files or your systems and holds them hostage until a ransom is paid. It also examines the different types of ransomware and explains what you can do to thwart this sinister online threat.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question