active directory forest trust setup problem?
Posted on 2007-07-24
I've setup 2 forests, within virtual server. Only one top level domain in each forest. This has been setup for exam purposes, but I'm having a problem with setting up the trust relationship.
Forest one- UK.com server name- London
IP address 10.0.0.1
DNS server 10.0.0.01
Forest two, USA.com, server name- newyork
IP adress 18.104.22.168
DNS server 22.214.171.124
When I go to create the trust, and I enter trusted Forest's name usa.com, I recieve "the name you specified is not a valid windows domain name" ?
I need some advise on setting up DNS. Do I include a seconadry dns zone on each dns server which reflects the other dns server? (i want a two way forest trust) I did setup a seconadry dns zone on the london server which reflected the ip details of the usa server, but it fails to pull donwn the zone dbase, it has a red cross over the seconadry zone name? Curios though as I can ping the usa server name, and run an nbtstat to it (nslookup fails). This indicates that the shared virtual network is functioning correctly.
Also, I've deliberatley setup each domain's ip details to be on different subnets so that i can play around with trusts etc. Do I need to include an IP subnet within 'sites and services' to reflect the alternate subnets? Can someone briefly explain what these subnet entries mean?