Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Authentication across multiple domains

Posted on 2013-02-07
6
Medium Priority
?
388 Views
Last Modified: 2013-02-14
We have two separate domains, connected via VPN, and I'm wanting to authenticate on one server with users from the other domain. We're running a web server which would need to authenticate in IIS. I'm hoping this would be possible. We cannot join the domains as they are two separate legal entities.
0
Comment
Question by:andrew_2706
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38865473
Is this a SharePoint question?  Is there a trust betwen the domains?  Have you talked about ADFS?
0
 

Author Comment

by:andrew_2706
ID: 38865521
We intend to install SharePoint and to also try and authenticate for that service too. I do not know how to implement a trust between the domains and have not looked at ADFS - what would you suggest?
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38865612
If you are wanting users to authenticate with their domain credentials, you will have to create a trust between the domains (possible since you have VPN connection), or implement an ADFS solution (allows you to use internet connection between the sites).
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:andrew_2706
ID: 38865720
That sounds like exactly what we need to do, how difficult is it to set up the trust between the two domains? we have admin access to both DC's
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38866115
Not that hard.  Just do some Google searches.  If you have a sys admin team, it's a fairly common task that they should know how to do.
0
 
LVL 18

Accepted Solution

by:
Sarang Tinguria earned 2000 total points
ID: 38866919
Create conditional forwarders in both of your forest DNS server pointing to each other

How to Configure DNS Conditional Forwarding in Windows Server ...
www.youtube.com/watch?v=QL5oclBf4BM
http://msmvps.com/blogs/ad/archive/2008/09/05/how-to-configure-conditional-forwarders-in-windows-server-2008.aspx

Then follow below link to create trust

http://www.misdivision.com/blog/how-to-create-a-trust-in-windows-server-2008-r2
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

927 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question