?
Solved

Server domain trust

Posted on 2011-03-10
10
Medium Priority
?
251 Views
Last Modified: 2012-05-11
I have a client that has 2 domains domain.com and domain.org and they have 2 locations with VPN access to see one of another. The reason for the separation is that one location is the corporate office(domain.org) and the other (domain.com) handles donations and such. they are non-for-profit. Corporate employees have offices in the 2nd location, and the networks were originally separated. The separate networks hindered productivity, and we have added everything to the same network. The corporate office has a secondary DC in location 2 just in case internet goes down, so now the 2nd location has the DC with Exchange for donation side, and the secondary DC for corporate. I disabled DNS and DHCP on the secondary DC since on the same network for the donation side. I pointed the secondary DC DNS to the DC in the corporate location. I am not really concerned about the internet going down...

I have to keep the separate domains but be able to see one another, the problem I have are the exchange portion. I can set static IP's on the desktops used on the corporate network and Outlook open successfully. If I have it pull DHCP from donation server, obviously it goes down. I have users that use laptops, and cannot have static IP's and they do not want to have to input one when they go to the 2nd location. I need Exchange to work even if it pulls from DHCP on the donation server (domain.com)

So I tried to create a trust between the domains and it is failing. I am not sure why, I can ping everything but cannot get the trust working. Would the trust help me to get everything to see one another. Do you think any easier solution can be put in place, any suggestions.

I know this is confusing, was a little difficult to type out. lol.. Thank you in advance for any help, I appreciate it.
0
Comment
Question by:TJacoberger1
  • 5
  • 5
10 Comments
 
LVL 12

Expert Comment

by:Daniel Borger
ID: 35108413
More decription on how the trust is setup and details on what is failing might help get a resolution. The last time I had a trust issue it was because of I needed to add DNS forwarders pointing the 2 domains at each other.
0
 

Author Comment

by:TJacoberger1
ID: 35108442
In DNS, I have forwarders in DNS pointing to each domain. Should it be the first on the list or last is ok? I even added the DNS IP's in the network connection as well.

The trust is not setup, I cannot get to trust the domains.
0
 
LVL 12

Expert Comment

by:Daniel Borger
ID: 35108467
Do you get an error when you step through the trust setup wizard?
0
What Security Threats Are We Predicting for 2018?

Cryptocurrency, IoT botnets, MFA, and more! Hackers are already planning their next big attacks for 2018. Learn what you might face, and how to defend against it with our 2018 security predictions.

 

Author Comment

by:TJacoberger1
ID: 35108473
I do not get a specific error which is making it hard to troubleshoot.
0
 
LVL 12

Accepted Solution

by:
Daniel Borger earned 2000 total points
ID: 35108502
yeah, that makes it tough..  
I'd probably start with the basics then and verify the domains meet the requirements for the trust as well as look at networking between the sites.
http://support.microsoft.com/kb/179442
0
 

Author Comment

by:TJacoberger1
ID: 35108547
I tried it again and was ale to produce an error message from the corporate server.

Either the domain does not exist, or network or other problems are prevetning connection.
0
 
LVL 12

Expert Comment

by:Daniel Borger
ID: 35108590
I've got to go to a meeting but that error will help give us some direction.. google is our friend :)
0
 

Author Comment

by:TJacoberger1
ID: 35137523
Hey dborger, I was able to get the trust in place. With the trust in place, shouldnt I be able to ping each DC in the 2 domains? I cannot.
0
 

Author Closing Comment

by:TJacoberger1
ID: 35138202
I was able to get it working. Thank you for your help.
0
 
LVL 12

Expert Comment

by:Daniel Borger
ID: 35138747
That's great. what did you have to do?
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Eseutil Hard Recovery is part of exchange tool and ensures Exchange mailbox data recovery when mailbox gets corrupt due to some problem on Exchange server.
Steps to fix error: “Couldn’t mount the database that you specified. Specified database: HU-DB; Error code: An Active Manager operation fail”
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question