Solved

Two Way Trust Setup Fails: cannot create both sides of the trust because a primary domain controller for the specified domain cannot be contacted

Posted on 2010-08-30
3
2,031 Views
Last Modified: 2012-05-10
I can look in WINS and see the second domain's members, but when I try to create the two way external trust, both this domain and specified domain are trusted I get the error.

Cannot create both sides of the trust because a primary domain controller for the specified domain cannot be contacted.  

The operation failed.  The error is the Operation completed successfully.
0
Comment
Question by:ehess
  • 2
3 Comments
 
LVL 3

Expert Comment

by:danielswanson
ID: 33562504
Using windows support tools run dcdiag on both domains from a domain controller. This will help get you started in tracking down issues.

Also run nslookup <domain name> where domain name is the fully qualifed name of your windows domain. make sure that all the returned ip addresses are available. do this from both sides of the trust your attempting to establish.
0
 
LVL 1

Author Comment

by:ehess
ID: 33563196
When I run the nslookup FQDN of my domain name, my DC IPs are returned.  When I run nslookup of the other FQDN nothing is returned can't find FQDN:  Non-existent domain.  
0
 
LVL 3

Accepted Solution

by:
danielswanson earned 500 total points
ID: 33563434
That is definately going to be a problem. You need to be able to resolve from your domain to the other domain and your other domain needs to resolve to your domain. Start looking into your dns setup. You need to configure the dns server on your domain to forward requests to the other domain from their dns server.

example you domain is called domaina.com, the other domain is called domainb.com
domaina 's dns server needs to be configured so that any dns requests for domainb.com get forwarded to the dns server of domain b. You also need to configure this the other way around from the other domain.

you just need to configure the dns forwarders on each side.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
by Batuhan Cetin In this article I will be guiding through the process of removing a failed DC metadata from Active Directory (hereafter, AD) using the ntdsutil tool in a Windows Server 2003 environment. These steps are not necessary in a Win…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now