domain trusts

Hi all,

I like some expert advice my company domain and another company has established trust relationship and some of my company users would like to take their laptops to the other company and login from there. No they need access back to my company and also they would like access to the other company network applications and so on. Does the other company need to create user accounts on their active directory so my users can access their shares, licenses and applications?
LVL 4
Habib ZakariaNetwork Solutions ArchitectAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Brian PiercePhotographerCommented:
No - the whole idea of a trust, is that their domain trusts your domain, so if the users have a valid account and can log onto your domain, their domain will trust them and give them access to resources (for which they have been granted the necessary permissions of course)
0
Brian PiercePhotographerCommented:
0
Radhakrishnan RSenior Technical LeadCommented:
Few things to check before establishing trust,1. I understand that you have 2008 server and is the same available on other domain? if so, you can raise the domain functional level to 2008 and forest functional to 2003 or same.
You can establish a oneway trust if they dont want access your domain. You should validate the trust with a valid admin credentials.

Hope this helps you.
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

araberuniCommented:
Step by step guide to create Domain Trust between company A and Company B http://microsoftguru.com.au/2009/11/30/how-to-create-an-external-trust-between-two-separate-domainsforests/

Say users from Company A want access inot Company B.

Step1: Create a one way trust relation betwen Company A and Company B
Step2: To provide access to DFS share or application in company B.... add AD group or AD users of Company A into Company B's DFS and Apps.

Thats all you have to do.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Leon FesterSenior Solutions ArchitectCommented:
Most trusts are typically configured as two-way transitive trusts.
If that is the case then they users should be able to logon to their own domains, just by plugging their laptops onto the network of the other company.

Even their existing machines can be used to logon to your domain.
On Windows XP, click the "Options" button on the logon screen and select your AD Domain.
Login with your normal user credentials.

On Windows 7, there is no "Options" button so you enter your username as"
yourdomain\username

If you need to assign permissions to users from another domain, then add them to a security group of type "Domain Local".

You won't see the users from the other domain in any other universal or local groups
0
Habib ZakariaNetwork Solutions ArchitectAuthor Commented:
Good reply
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.