Link to home
Start Free TrialLog in
Avatar of iamdieter
iamdieterFlag for South Africa

asked on

Domain trust relationship

Good day,

We have are having problems setting up a trust relationship between two domain.

Currently we are part of a forest called: abc.co.za
Current FQDN: current.abc.co.za
One of the forward lookup zones on our DNS is: companyname.com

New FQDN: new.companyname.com

We have created the conditional forwarders on both DNS servers and can ping both domain names from both sides.

When trying to create trust from current domain we get error on attachments 001
When trying to create trust from new domain we get error on attachments 002

Please also confirm that the current forward lookup zone we have company.com is not causing problems with new domain new.company.com.
001.png
002.png
Avatar of Mahesh
Mahesh
Flag of India image
Only forward lookup zones with ad domain names are required here in order to build trust
Conditional forwards / secondary zones should be set between these zones

Further all AD authentication ports must be opened between both domains bi-directionally between source and target dc and between both domain pdc masters
In short the dc from where you building trust should be able to communicate with both pdcs, else trust cannot be established

Check below thread
https://support.microsoft.com/en-us/help/179442/how-to-configure-a-firewall-for-domains-and-trusts
Avatar of iamdieter
iamdieter
Flag of South Africa image

ASKER

We are allowing all traffic between the domain controllers and not specifying anything
ASKER CERTIFIED SOLUTION
Avatar of iamdieter
iamdieter
Flag of South Africa image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial