Solved

Authentication across multiple domains

Posted on 2013-02-07
6
372 Views
Last Modified: 2013-02-14
We have two separate domains, connected via VPN, and I'm wanting to authenticate on one server with users from the other domain. We're running a web server which would need to authenticate in IIS. I'm hoping this would be possible. We cannot join the domains as they are two separate legal entities.
0
Comment
Question by:andrew_2706
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38865473
Is this a SharePoint question?  Is there a trust betwen the domains?  Have you talked about ADFS?
0
 

Author Comment

by:andrew_2706
ID: 38865521
We intend to install SharePoint and to also try and authenticate for that service too. I do not know how to implement a trust between the domains and have not looked at ADFS - what would you suggest?
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38865612
If you are wanting users to authenticate with their domain credentials, you will have to create a trust between the domains (possible since you have VPN connection), or implement an ADFS solution (allows you to use internet connection between the sites).
0
Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:andrew_2706
ID: 38865720
That sounds like exactly what we need to do, how difficult is it to set up the trust between the two domains? we have admin access to both DC's
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 38866115
Not that hard.  Just do some Google searches.  If you have a sys admin team, it's a fairly common task that they should know how to do.
0
 
LVL 18

Accepted Solution

by:
Sarang Tinguria earned 500 total points
ID: 38866919
Create conditional forwarders in both of your forest DNS server pointing to each other

How to Configure DNS Conditional Forwarding in Windows Server ...
www.youtube.com/watch?v=QL5oclBf4BM
http://msmvps.com/blogs/ad/archive/2008/09/05/how-to-configure-conditional-forwarders-in-windows-server-2008.aspx

Then follow below link to create trust

http://www.misdivision.com/blog/how-to-create-a-trust-in-windows-server-2008-r2
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now