Solved

Microsoft Forefront Deploying Policy Error

Posted on 2009-05-14
7
418 Views
Last Modified: 2012-06-27
I have a forefront server that is a member of domaina.com and I'm attempting to deploy its policy in domainb.com and I'm getting an error.  I believe all networking communication is fine but it is giving me the error below.
forefront-error.jpg
0
Comment
Question by:LrdKanien
  • 4
  • 3
7 Comments
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 24409262
Three questions.
Is the second domain part of the same forest that the first domain is in so they are using the same credentials?
Second, are the security credentials being used valid - at administrator level - for the second domain or is there a trust in place?

What oS, service packs and AD level are each of the domains in question?
0
 

Author Comment

by:LrdKanien
ID: 24413927
1.  second domain is part of the same forest as the root domain.  I'm logged in as myself with the FCS MMC up under Policy Management attempting to deploy to an OU in the 2nd domain.

2.  I am a member of enterprise admins in the root forest domain.

3.  the domain is server 2008 with domain functioning level of 2003 because I have 1 2003 Domain Controller.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 24414989
If you try and use administrator account credentials from the domain you are now trying to deploy to, does it make a difference? I have had some disturbing results when using the Enterprise Admin on some product installs. A similar situation occured recently when deploying System Center Operations Manager clients and, despite the implicit trust, we ended up having to use certificates  :(
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 

Author Comment

by:LrdKanien
ID: 24417541
I'm not sure how you want me to proceed with that advice.  I'm using the FCS mmc to deploy the policy.  How would I deploy it with another users credentials?

I'd prefer the solution to be that I grant necessary access in the 2nd domain for the FCS to be able to deploy its policy there.
0
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 250 total points
ID: 24418774
just log on as the administrator of the other domain on the same machine you are using now and fire up the mmc. You may well get the solution you would 'like' but we can quickly prove if it is viable.
0
 

Author Comment

by:LrdKanien
ID: 24426523
was networking issue.  basically needed every port open as if it were on that same domain, 88, 445, 135 etc.
0
 
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 250 total points
ID: 24428000
Sweet
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Annoying Outlook Anywhere 6 91
ISA 2004 site to site VPN 1 74
SCOM Window OS monitoring 3 65
Difference security-only quality vs security monthly quality rollup updates 5 102
Here is the example of setting up enterprise library configuration in asp.net. One of the great enhancements that comes with the Enterprise Library is the Enterprise Library Configuration Console. This can be found on your Start menu under Progra…
Hi Everyone Now IIS AppPool issues is something we have always had because of the amazing custom development and in-house applications we have :) The issues we had were getting out of control and it was time to do something about it, just for…
This tutorial gives a high-level tour of the interface of Marketo (a marketing automation tool to help businesses track and engage prospective customers and drive them to purchase). You will see the main areas including Marketing Activities, Design …
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question