• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 699
  • Last Modified:

Windows Trust Issue

Two Windows 2003 forests with a validated trust set up.  This is across a VPN tunnel on two Cisco ASA 5510s.  On a few of my servers, if I go into Computer Management and Local Users and Groups and try to add users from DomainA into local groups on a computer in DomainB, I select the Location (DomainA), I hit Check Names and it resolves the name correctly (Test User {tuser@domainb.local) but when I click OK it throws this error:

"The domain controllers required to find the selected objects in the following domains are not available: DomainA.  Ensure the domain controllers are available, and try to select the objects again."

I can ping both domain controllers in DomainA from the machine i'm trying to add users to.

On the other hand, going the other direction when trying to add users from DomainB into local groups on a computer in DomainA I cannot "Check Names" and I cannot browse the groups using the advanced options.  I get the following error

The following error prevented the display of any items:

The system detected a possible attempt to compromise security.  Please ensure that you can contact the server that authenticated you.
0
dlabbadia01
Asked:
dlabbadia01
1 Solution
 
dlabbadia01Author Commented:
This had to do with NETBIOS communication between the two domains over a layer 3 switch.  Setitng up LMHost files on each computer resolved the issue.
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now