OK, here is the problem. I am trying to create a two-way trust between a 2000 domain and a 2003 domain. We have many other trusts and domains so this is nothing new. I creat the trust from the 2003 server and have it create both. I can verify from the 2003 domain but when I verify from the 2000 domain I receive an Active Directory Access Denied error. I have other 2000 domains that trust the 2003 domain that work fine. I have checked the DNS lookup zones and everything seems to be correct. part of it must be working because I can ping and browse the 2000 domain from the 2003 however I cannot browse the 2003 domain from the 2000. Any ideas???