Solved

Two way trust only works on PDC?

Posted on 2011-02-25
6
520 Views
Last Modified: 2012-06-27
I have a new Windows server 2008 R2 domain and forest (both functional levels at 2008 R2)
with a two way trust to another domain in a different forest (both 2000 mixed functional level)

so the setup is
Forest  A Domain A is 2008 R2
Forest  B Domain B is server 2003 running forest/domain 2000 mixed functional level.

on the PDC in Domain A  I can share files and see accounts in Domain B

But on any other member server or other domain controllers in Forest A, when I try to share a file and choose permissions, I can see domain B listed, but I only see about a dozen "built-in" accounts,  not the other 1500 user accounts in that domain.

Any idea how to resolve this?  

Thanks!

0
Comment
Question by:teex-nis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 6

Expert Comment

by:sharjeel ashraf
ID: 34985330
did you create teh trusts manually, i.e. on domain first then the other, or did you use the wizard in 2008 and tell the wizard to create the trust on the other side.

also are you using the same account on both servers.

0
 
LVL 37

Expert Comment

by:Neil Russell
ID: 34986244
First of all, there is no such thing as a PDC!  PDC's died with NT Server 4.0 Now ALL domain controllers are domain controllers. Not Backup domain controllers or PDC's Just domain controllers.

You said in your post "But on any other member server or other domain controllers in Forest A"
Are you saying you have a Multi domain forest in A? Is your issue with servers in another domain in the same forest as the server you created the trust or the same domain? Your text here is a little ambiguos thats all.
0
 

Author Comment

by:teex-nis
ID: 34997794
The trust was created using the wizard in 2008.

There is only one domain in each forest.

Things are working fine from domain B (the windows 2003 domain).  but in domain A, only the first domain controller in that domain can see accounts from Domain B.  None of the other domain controllers or member servers in the 2008 domain can see user objects from the 2003 domain.

Thanks
0
 

Accepted Solution

by:
teex-nis earned 0 total points
ID: 35010819
Found the problem,  some how the trust had stopped working.  

I removed the trust and re-created it and things are working fine now.  thanks!
0
 
LVL 70

Expert Comment

by:Qlemo
ID: 35399161
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
0

Featured Post

Edgartown IT Case Study

Learn about Edgartown's quest to ensure the safety and security of the entire town's employee and citizen data. Read the case study!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
Here's a look at newsworthy articles and community happenings during the last month.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question