Block Trust between Child Domains Windows 2003
Posted on 2008-10-28
We currently have a single forest. We have a top level domain and a child domain. We acquired another company but do not want any resources shared between both child domains. My understanding with Windows server 2003 Active Directory, all trusts are implied and Transitive. Is there a way to force the two child domains to "never" be able to share resources or see each other's AD objects? Is there a knowledgebase article to verify this is possible? Child domains can see resources in the parent domain but should not see the other child.