I have 2 Windows 2003 domains in our network. One domain is our main network domain called "LACOINC1", while the other is on the other side of a Cisco ASA 5510 firewall, in a DMZ, called "DMZ". I have worked with Cisco technicians to configure the firewall to allow for domain controller communication back and forth on ports 53, 135, 445, 1638, and 389 inbound and outbound. So far, I've been successful at creating a 2-way Trust between domains, and am also able to logon interactively to the DMZ DC as an internal "LACOINC1" user, with no problem. I am also able to map to an inside file share and see files and other resources. Where I am having trouble is with any kind of name resolution of users from the LACOINC1 domain. for example, I am unable to assign a LACOINC1 domain user to permissions of a DMZ server folder, saying there is "no such user". Other interfaces that rely on being able to locate users from the inside domain fail also, with similar errors. What could be causing this?
Thanks for your help