I have a query about authenticating across domains for resources. I have a one way trust in place with another company. If a user authenticates on the remote network and tries to access a resource on my network do they authenticate off any of my domain controllers or are they simply handed a token when they logon to their network and seamlessly pass through onto my network and obviously when they try to access a shared resource their token is checked for permissions.
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…