?
Solved

Accessing Resources in a trusted domain

Posted on 2011-09-28
4
Medium Priority
?
183 Views
Last Modified: 2012-05-12
Hi there,
We have a legacy 2003 AD and have created a new 2008 AD. We created a two-way trust between the 2 domains, migrated the user accounts and SID history, currently migrating mailboxes.
Fileshares that are accessible in Domain A are not accessible from Domain B despite the SID history migration.
Any help would be appreciated.
0
Comment
Question by:murphyge
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 18

Assisted Solution

by:x-men
x-men earned 1000 total points
ID: 36718066
do DomainB\Users have permissions on the shares ?
0
 
LVL 59

Accepted Solution

by:
Darius Ghassem earned 1000 total points
ID: 36718885
The Domain1 and Domain2 are two different domains you still need to add permissions to the folders for Groups\Users to the old domain.

Create Universal Group or Global Group in Domain2 then create Domain Local Group in DomainA add then DomainB Group into this Domain A group
0
 

Assisted Solution

by:murphyge
murphyge earned 0 total points
ID: 36902335
Guys,

Thanks for your contributions. We had already added the accounts from the new domain to the share permissions in the old domain but that didn't do it.

The solution was to edit the default domain policy on the old domain: Computer Configuration/Security Settings/Local Policies/User Rights Assignment/Allow Log on localy - add authenticated users from new domain. Then did a gpupdate /force on the domain controllers and the member servers where the shares existed and bingo, sorted.

Hope this helps someone else.
Gerry
0
 

Author Closing Comment

by:murphyge
ID: 36935091
I have split the points as both comments put em on the track to the solution.
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question