Solved

Tree root trust - Access Denied

Posted on 2010-09-17
3
895 Views
Last Modified: 2012-05-10
Hi all,

Building a new AD network I've setup a forest: alpha.forest and the tree root domain beta.local so all the users will log on to the domain 'beta'.

The automatic trust between them is only one way; if I validate the trust on Alpha it's fine.  If I validate the trust on Beta if fails with access denied.  I then log in with Alpha's admin credentials and I'm told it's all good.  I then retry the test and if fails again.

Can't see any errors in either event log at all.

Any advice most welcome.

Thanks
Paul.
0
Comment
Question by:looops
  • 2
3 Comments
 
LVL 24

Accepted Solution

by:
MojoTech earned 250 total points
Comment Utility
"alpha.forest and the tree root domain beta.local"

Trust issues aside I do not quite understand what you have done? why build 2 forrests?

the whole point of having a forrest is that you can have a single security boundry with many domains.

so you should have a root domain

root.local then maybe a child domain called alpha which would be alpha.root.local or whatever.




0
 

Author Comment

by:looops
Comment Utility
It's not two forests, it's a child domain but we wanted it's own name for branding / locale reasons. ie wanted the users to log into 'beta'.
0
 

Author Closing Comment

by:looops
Comment Utility
I rebuilt the AD ito a standard 1st Forest / Domain.

Thanks for the input.
0

Featured Post

Do email signature updates give you a headache?

Do you feel like you are constantly making changes to email signatures? Are the images not formatting how you want them to? Want high-quality HTML signatures on all devices, including on mobiles and Macs? Then, let Exclaimer solve all your email signature problems today.

Join & Write a Comment

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now