Trust / DNS problem between 2 domains
Posted on 2007-11-23
Two Win 2003 servers each on their own domain needing a 2-way trust between them. It has been working fine but the past couple of days nothing but trouble and the trusts keep falling over.
Get a variety of errors when trying to validate from serverA, including:
"The trust cannot be validated. The outgoing trust was successfully validated. The secure channel (SC) reset on domain controller \\domainB\serverB of domainB failed with error: There are currently no logon servers available to service the logon request."
I then get asked if I want to change the trust password. If I say yes, then i get the error:
"The trust cannot be repaired because: There are currently no logon servers available to service the request"
If I try to validate from serverB I get the error:
"Windows cannot find a domain controller for the serverA domain. Verify that a DC is available and then try again.
I've tried scrubbing the trust and re-creating it and sometime it works, but other times it fails to create. When it does eventually work after a few attempts both servers validate the trust fine. But only for a while, sooner or later users start having problems and I'm back at the beginning.
Each server is set up as a host forward lookup zone in DNS for the other and there are forwarders to each other set up also. There is also a pointer in the reverse lookup zone on each servers.
The nature of the errors seem to point to the problem being with serverA, but I'm not sure what else to try.