We have DOMAINA which is in a company we aquired. All their users and servers all join that local domain. At headquarters (HQDOMAIN) we require the aquired companies users to join our HQDOMAIN. How can we configure the relationship between the two domains so that they can still join HQDOMAIN while continuing to use the DOMAINA for their servers. Their SQL environment and File Servers all require to be part of this DOMAINA. All NTFS permissions defined in DOMAINA will go away if their local users JOIN the HQDOMAIN.
I'm sure this is a common scenario when compaines are bought and merged. I'm not sure if we can mess with the forrest or things at that level. Trusts can be created, but I don't think that solves much. Anyone can direct me to common solutions to this. 1 company buying up other smaller companies and how AD becomes an issue with local applicatons/servers.
BTW, we currently have site to site vpn setup and running so we have complete bidirectional communication. Just need options for handling domains
However, what is the best way to allow them to change their passwords on the HQDOMAIN. Again we have a site to site VPN, but unless they logon/join the HQDOMAIN, what are the ways their users can change their passwords every 90 days (also reminders of password expirations)