Cannot access file shares between AD forests - one way fault

Posted on 2013-11-18
Last Modified: 2013-11-29
Hi All,

I have a weird fault with file shares between two seperate AD Forests.

Forest A can access Forest B file shares without issuse, prompts for credentials for \\fileserver.domainb.local and allows access once authenticated.

Forest B cannot access any file share resource on Forest A, I am not prompted for credentials or anything. No acction occurs when accessing resource \\fileserver.domaina.local

FQDN resolves between each side without fualt. And two trust authentication is responding for other services such as exchange as well. I cannot get file share to respond or prompt.

Any one have any ideas?

Question by:Spev83
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
LVL 37

Expert Comment

ID: 39659051
You can make DNS Host (A) record of File server in domain A on DNS server of forest B..
Also check if you are able to access file server with IP from domain B
You can telnet file server IP on TCP 445 from domain B computers \ servers and check if it works


Expert Comment

ID: 39659425
do you actually have a two way trust in place?? I would check the settings there first on both domains.
LVL 37

Expert Comment

ID: 39659438
Regardless of trusts, it should at least provide authetication window so that you get assurance that reqquired ports opened...

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.


Expert Comment

ID: 39659442
That is a good point.
LVL 37

Expert Comment

ID: 39659486
You can check one thing please..
if there is firewall exists between both domain file servers, just check that firewall can pass below netbios and SMB traffic
Netbios broadcasting
TCP 139  
UDP 137, 138

TCP 445

Accepted Solution

Spev83 earned 0 total points
ID: 39673634
Thanks for the responses,

I manage to identify a CIFS transfer error on one of our Citrix Cloudbridge units. Once the traffic error was resolved the fault was resolved.

Author Closing Comment

ID: 39684982
Fault was CIFS Traffice related not TCP or microsoft protocol.

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Problem Description: Actually I found the below issue with some customers after migration from SMS 2003 to SCCM 2007 and epically if they change site code, some clients may appear in the console with old site code, plus old sites still appearing …
Have you considered what group policies are backwards and forwards compatible? Windows Active Directory servers and clients use group policy templates to deploy sets of policies within your domain. But, there is a catch to deploying policies. The…
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question