The situation is as follows:
Parent domain: parent.net
DCs: SERVER1 and SERVER2 (both are configured as Global Catalog)
OS: Windows 2003 Server Enterprise (both servers)
Child domain: child.parent.net
DC: CHILDSERVER (also set as Global Catalog)
OS: Windows 2003 Server Standard
Both segments have a firewall which establishes an IPsec VPN tunnel. All TCP and UDP ports are open between the servers in both locations.
Now the problem is that everything works fine when as long as the VPN tunnel is up. As soon as it's down, the users can't logon to their Windows PC anymore or even when the screen is locked they cannot unlock it with their correct password. The users are created under child.parent.net.
What can we do to solve this issue? I thought it would be okay when the child domain DC is set as Global Catalog as well...