Authentication across multiple domains

We have two separate domains, connected via VPN, and I'm wanting to authenticate on one server with users from the other domain. We're running a web server which would need to authenticate in IIS. I'm hoping this would be possible. We cannot join the domains as they are two separate legal entities.
andrew_2706Asked:
Who is Participating?
 
Sarang TinguriaConnect With a Mentor Sr EngineerCommented:
Create conditional forwarders in both of your forest DNS server pointing to each other

How to Configure DNS Conditional Forwarding in Windows Server ...
www.youtube.com/watch?v=QL5oclBf4BM
http://msmvps.com/blogs/ad/archive/2008/09/05/how-to-configure-conditional-forwarders-in-windows-server-2008.aspx

Then follow below link to create trust

http://www.misdivision.com/blog/how-to-create-a-trust-in-windows-server-2008-r2
0
 
Justin SmithSr. System EngineerCommented:
Is this a SharePoint question?  Is there a trust betwen the domains?  Have you talked about ADFS?
0
 
andrew_2706Author Commented:
We intend to install SharePoint and to also try and authenticate for that service too. I do not know how to implement a trust between the domains and have not looked at ADFS - what would you suggest?
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
Justin SmithSr. System EngineerCommented:
If you are wanting users to authenticate with their domain credentials, you will have to create a trust between the domains (possible since you have VPN connection), or implement an ADFS solution (allows you to use internet connection between the sites).
0
 
andrew_2706Author Commented:
That sounds like exactly what we need to do, how difficult is it to set up the trust between the two domains? we have admin access to both DC's
0
 
Justin SmithSr. System EngineerCommented:
Not that hard.  Just do some Google searches.  If you have a sys admin team, it's a fairly common task that they should know how to do.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.