Unable to add user accounts to ACL from a trusted domain after inadvertently removing DNS from local domain controller
Posted on 2009-04-22
I accidentally removed DNS from one of the domain controllers in my domain ( I meant to remove it from a DC I was retiring) and I quickly realized my mistake and added DNS back to the DC. We have a transitive forest trust set up with our parent company, and before I removed DNS from the DC, we were able to permission user accounts from the trusted domain to ACLs on folders/shares created on our main file server. Now we are no longer able to permission the folders/shares with the trusted domain's accounts. One odd thing to note is that we ARE able to permission folders/shares on our domain controllers with the trusted domain's accounts.
The DC in question that had DNS removed holds the RID Master and PDC emulator roles.