Solved

Creation of Forest Trust between Forests

Posted on 2008-06-12
7
350 Views
Last Modified: 2013-11-29
Hi,
I have LiveDC.abc.com (for eg), installed Windows Server 2003 and Exchange server 2003, Now just i am separating this existing domain into two part one is NewDC.xyz.com, installed windows server 2003 and Exchange server 2007 and other is NewDC.pqr.com, installed windows Server 2003 and Exchange Server 2007.

For migration of User and mailbox, I have created Forest Trust between LiveDC.abc.com and NewDC.xyz.zom, and migrated 100 users (for eg) from abc.com to xyz.com and now i want to create Forest Trust between LiveDC.abc.con and NewDC.pqr.com for the migration of rest user and mailbox. Is it possible.(I want to keep previous trust also). if it is possible then any harm...........bcse all are different2 forest.

NewDC.xyz.com------Forest Trust--------------------------------------LiveDC.abc.com----------------------???-------------------------NewDC.pqr.com

Waiting for reply.....pls.....................
0
Comment
Question by:mahtab786_dbi
  • 3
  • 2
7 Comments
 
LVL 6

Expert Comment

by:DocCan11
ID: 21778658
This is of course possible, you will just create another forest trust between LiveDC.abc.com and NewDC.pqr.com. The forest trusts however are NOT transitive in nature, meaning NewDC.xyz.com and NewDC.pqr.com will not trust each other through the existing trusts. If you want this you will need to create it directly.. As for security the default behavior allows all people to use the trust. You can block this when you create the trust if required.. This is the link that will give you more information..

http://technet2.microsoft.com/windowsserver/en/library/15dfdd7f-3a7f-4d6f-a2b0-569462fb44321033.mspx?mfr=true

Hope this helps
0
 

Author Comment

by:mahtab786_dbi
ID: 21782325
I have no problem , if xyz.com will access resources in pqr.com. just i want to be confirm that after creating the trust between abc.com and pqr.com, there will be no harm between abc.com and xyz.com .
0
 
LVL 6

Expert Comment

by:DocCan11
ID: 21783501
no harm at all..
0
 

Author Comment

by:mahtab786_dbi
ID: 21848020
Hi everyone, first of all thanx as i have created trust between abc.com and pqr.com and also working . but in event viewer of abc.com DC one warning event is

Event Type:     Warning
Event Source:   LsaSrv
Event ID:       32772
Description:
The interdomain trust account for the domain xyz.com could not be created.
The return code is the data.

For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.

As far as I can see there's nothing wrong with the trust between abc.com and xyz.com. Replication goes well.
Except this event keeps nagging at me....
Any ideas on this would be highly appreciated.

0
 
LVL 6

Accepted Solution

by:
DocCan11 earned 500 total points
ID: 21848153
Here is a great link with a couple of possible problems and solutions.

http://forums.techarena.in/showthread.php?t=460558

0

Featured Post

Are your end users making ugly email signatures?

Have you left it up to your end users to create their own email signatures? Are they forgetting to add the company logo or using garish font colors? Take control and ensure all users have the same email signature.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Our Group Policy work started with Small Business Server in 2000. Microsoft gave us an excellent OU and GPO model in subsequent SBS editions that utilized WMI filters, OU linking, and VBS scripts. These are some of experiences plus our spending a lo…
If you get continual lockouts after changing your Active Directory password, there are several possible reasons.  Two of the most common are using other devices to access your email and stored passwords in the credential manager of windows.
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now