Solved

Setting up DNS with External Trust

Posted on 2009-05-15
1
414 Views
Last Modified: 2013-11-05
I have been tasked with creating a two-way trust relationship between our company (ABC.com with a Windows Server 2003 forest functional level) and our parent company (123.com with a Windows 2000 forest functional level).  Of course management wants this done yesterday.  We first plan on establishing a site-to-site VPN prior to creating the trust relationship and it seems as though our best, if not only, option would be to create an external trust between the two domains.  My main concern is how to properly setup DNS between the two domains.  I have read up a little on Secondary Zones, Stub Zones and Conditional Forwarders, but not entirely sure when to use each one and which would be the proper way of setting it up in this situation.  Any help would be greatly appreciated.

TIA,

Mark
0
Comment
Question by:mbruno22
1 Comment
 
LVL 70

Accepted Solution

by:
Chris Dent earned 250 total points
ID: 24399183

Hi Mark,

I would choose either Conditional Forwarders or Stub Zones.

Both can be AD Integrated (although you have to do that from the command line with DNSCMD) which reduces the overhead involved with setting them up.

Chris
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

[b]Ok so now I will show you how to add a user name to the description at login. [/b] First connect to your DC (Domain Controller / Active Directory Server) SET PERMISSIONS FOR SCRIPT TO UPDATE COMPUTER DESCRIPTION TO USERNAME 1. Open Active …
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now