Issues with Setting up Forest trust
Posted on 2009-02-10
We have a requirement to set up a Forest Trust between our Active Directory Forest and one at our Parent Company. Only we require access to their resources, so I have created the one way Incoming trust using the other root domain and this seems fine. They, on the other hand, are having issues. I have entries in the name suffix routing tab of the trust, which suggests to me that mine appears fine. I can't validate the Trust however, which I think is down to them not having set up their half successfully. I do not know the issues they are having as the communication from their AD Contractor is very limited. He has requested I create an account in our Forest that has the ability to set-up Trusts so he can jump on one of our Domain Controllers and configure the Trust from both ends. I'm not particularly happy for someone ele's contractor to have access to our DC carte blanche, as he could do anything. Anyone got any thoughts how I can control this and still get the Trust up and running. I have already sent him the password I used to set up my Incoming Trust so he can use the same password for their Outgoing trust.