Solved

How do I re-establish a trust between two servers and how can I add a third server to the domain so it's services can be shared without duplicating user names on multiple servers?

Posted on 2008-10-10
7
209 Views
Last Modified: 2013-11-25
I have a third party company maintaining a static VPN from one main location to two other offices.  there is a 2000 or a 2003 box at each location but there is only one database server at the central location.  there are point of sale systems at each location and they all need to connect to the one database server.  it would appear that HQ has a pdc and a file server and a stand alone database server.  the file server is trusted by the pdc.  the pdc at HQ seems aware of the pdc at location A but it' is grey'd out and claims it can't connect to it.  The pdc at HQ is not aware of the pdc at location B.  never the less, the workstations at all three sites have been connecting to a share on all three servers until tonight.  Now the workstations at location B are still working and none of the ones at location A can open a share on the pdc at HQ or the stand alone server at HQ.  They can all ping each other as if they were on the same network.  HQ is 192.168.0.xxx.  location A is 192.168.10.xxx and location B is 192.168.20.xxx.  A connects through vpn to HQ and B connects through vpn to HQ but A and B are not connected to each other.
0
Comment
Question by:jglazer63
  • 4
  • 3
7 Comments
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22693327

How have you configured DNS to allow each domain to resolve names within the other?

Chris
0
 

Author Comment

by:jglazer63
ID: 22693758
I am not aware of any dns server being present in that network.  I am headed there now and I will look at that too.  Isn't there a way to have a shared host file for all the workstations so these ip's and names can be already known?
0
 
LVL 70

Expert Comment

by:Chris Dent
ID: 22693766

To an extent we can use DNS for that, but to resolve by host name only each system will need a DNS suffix search list configuring.

Chris
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:jglazer63
ID: 22693783
they are already configured with a suffix.  HQ.local and A.local and B.local, if "HQ" and "A" and "B" were the actual names.
0
 

Author Comment

by:jglazer63
ID: 22694926
After restarting the servers at both ends, I can no longer use the name and when I try to open a share using the ip, I get this error message: "There are currently no logon servers available to service the logon request"...
0
 

Author Comment

by:jglazer63
ID: 22695000
If I go into the trust properties and highlight the once working trust and press the 'validate' button, I get the error message: "Windoes cannot find a domain controller for the A.local domain.  Verify that a DC is available and then try again." and this is where I'm stuck.
0
 
LVL 70

Accepted Solution

by:
Chris Dent earned 125 total points
ID: 22696831
Okay, the suffix helps the client resolve by hostname only, but it looks like we need to be checking name resolution handled by your DCs.

Presumably all clients on each side of the trust refer to their local DNS server for name resolution?

On those, what have you configured to allow the server to resolve names in the remote domain?

Chris
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question