[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Accessing Resources in a trusted domain

Posted on 2011-09-28
4
Medium Priority
?
187 Views
Last Modified: 2012-05-12
Hi there,
We have a legacy 2003 AD and have created a new 2008 AD. We created a two-way trust between the 2 domains, migrated the user accounts and SID history, currently migrating mailboxes.
Fileshares that are accessible in Domain A are not accessible from Domain B despite the SID history migration.
Any help would be appreciated.
0
Comment
Question by:murphyge
  • 2
4 Comments
 
LVL 18

Assisted Solution

by:x-men
x-men earned 1000 total points
ID: 36718066
do DomainB\Users have permissions on the shares ?
0
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 1000 total points
ID: 36718885
The Domain1 and Domain2 are two different domains you still need to add permissions to the folders for Groups\Users to the old domain.

Create Universal Group or Global Group in Domain2 then create Domain Local Group in DomainA add then DomainB Group into this Domain A group
0
 

Assisted Solution

by:murphyge
murphyge earned 0 total points
ID: 36902335
Guys,

Thanks for your contributions. We had already added the accounts from the new domain to the share permissions in the old domain but that didn't do it.

The solution was to edit the default domain policy on the old domain: Computer Configuration/Security Settings/Local Policies/User Rights Assignment/Allow Log on localy - add authenticated users from new domain. Then did a gpupdate /force on the domain controllers and the member servers where the shares existed and bingo, sorted.

Hope this helps someone else.
Gerry
0
 

Author Closing Comment

by:murphyge
ID: 36935091
I have split the points as both comments put em on the track to the solution.
0

Featured Post

Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question