DNS client settings for Forest Trust

Discussion in 'Server Migration' started by Fig Wiggleman, Jan 13, 2010.

  1. When setting up a forest trust between two 2003 forests, you commonly
    configure clients in each forest with an additional dns suffix of the trusted
    forest. Should you also configure this on the DC's and member servers?

    Thank you
    Fig Wiggleman, Jan 13, 2010
    1. Advertisements

  2. Hello Fig,

    The DNS servers in each forest have to be prepared and that's it. Use conditional
    forwarders or stub zones. The clients still have to use there own forest/domain
    DNS servers.

    Best regards

    Meinolf Weber
    Meinolf Weber [MVP-DS], Jan 13, 2010
    1. Advertisements

  3. Meinolf, thanks for your response.

    forgive me if I don't understand fully but...

    In our environment, forwarding is not enabled for "All other Domains". It is
    only enabled for names with suffixes vaild in the trusted forest.

    And for clients without the additional suffix in their dns config, non FQDNs
    of computers in the trusted forest will fail to be resolved because they get
    assumed to be in the local dns zone. Right?

    So am I correct in thinking the DCs from each forest also require this dns
    client confuration? Or does the trust somehow enable resolving of names from
    each others namespaces?
    Fig Wiggleman, Jan 13, 2010
  4. Hello Fig,

    To create the trust you have to prepare DNS to resolve the other domain name
    properly. This has nothing to do with the clients connecitng between the
    forests when the trust is built. For a trust DNS must run and after this
    step the clients can connect.

    Best regards

    Meinolf Weber
    Meinolf Weber [MVP-DS], Jan 13, 2010
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.