Solved

Setting up a domain trust relationship

Posted on 2008-10-13
2
881 Views
Last Modified: 2012-05-05
I need to setup a Windows Server 2003 domain trust between different domains in different forests. I have attempted to configure DNS but I can only ping the domain controller but not the other domain.

- How do I configure DNS to see the other domain.
- Once that is done, what do I need to do to do a two way trust.
0
Comment
Question by:brjensen
2 Comments
 
LVL 30

Assisted Solution

by:LauraEHunterMVP
LauraEHunterMVP earned 20 total points
ID: 22707450
To configure DNS in 2003 to allow name resolution for trusts, you have 3 options:

[1] Create a secondary zone for DomainB on the DNS servers in DomainA, and vice versa.
[2] Configure a conditional forwarder on the DNS servers in DomainA to forward all queries for DomainB to the DNS servers in DomainB, and vice versa.
[3] Create a stub zone in DomainA referencing the DNS servers in DomainB, and vice versa.

Once you have name resolution functioning in both directions, creating a trust is wizard-based and fairly simplistic.
0
 
LVL 8

Accepted Solution

by:
StrongBad_Rules earned 30 total points
ID: 22707490
Ensure that Domain Name System (DNS) is properly set up.

If there is a root DNS server that can be made the root DNS server for both of the forest DNS namespaces, make it the root server by ensuring that the root zone contains delegations for each of the DNS namespaces. Also, update the root hints of all DNS servers with the new root DNS server.

If there is no shared root DNS server and the root DNS servers for each forest DNS namespace are running a member of the Windows Server 2003 family, configure DNS conditional forwarders in each DNS namespace to route queries for names in the other namespace.

If there is no shared root DNS server, and the root DNS servers for each forest DNS namespace are not running a member of the Windows Server 2003 family, configure DNS secondary zones in each DNS namespace to route queries for names in the other namespace.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
edit user account 1 31
Change AD password via MS Access DB 2 20
Distribution groups exchange 2013 6 49
DNS spf record 14 42
Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now