Forest to Forest Trust Problem

Discussion in 'Active Directory' started by CPickler, Dec 30, 2008.

  1. CPickler

    CPickler Guest

    I went through and created a Forest to Forest trust to start the migration of
    Active Directory to the new domain from the old domain. When I go into the
    Domain Admins group to try to add Administrator of the opposite domain then I
    get an error saying Administrator is not a correct name for an account on the
    domain. If I do a search for accounts on the opposite server I get an error
    stating "The following error prevented the display of any items: Server is
    not operational"

    I am logged into both servers and both are running, yet both give me the
    error code about the other one. Is there a setting I am missing somewhere,
    or is there a port I need to make sure is open between the servers or
    anything like that? I got an error earlier when creating the trusts about
    login server not available, but it created the trust anyway, so I thought it
    overcame this error.
     
    CPickler, Dec 30, 2008
    #1
    1. Advertisements

  2. Howdie!
    Have you ensured there is proper name resolution between the two forests?

    cheers,

    Florian
     
    Florian Frommherz [MVP], Dec 30, 2008
    #2
    1. Advertisements

  3. CPickler

    CPickler Guest

    How do I check that? I ran the two tests in the DNS options and both servers
    passed both tests, so DNS is working, but beyond that I am not sure how to
    check that.

     
    CPickler, Dec 30, 2008
    #3
  4. CPickler

    Jorge Silva Guest

    Hi
    For the error check:
    http://support.microsoft.com/kb/837328

    Ensure that Domain Name System (DNS) is properly set up.
    If there is a root DNS server that can be made the root DNS server for both
    of the forest DNS namespaces, make it the root server by ensuring that the
    root zone contains delegations for each of the DNS namespaces. Also, update
    the root hints of all DNS servers with the new root DNS server.
    If there is no shared root DNS server and the root DNS servers for each
    forest DNS namespace are running a member of the Windows Server 2003 family,
    configure DNS conditional forwarders in each DNS namespace to route queries
    for names in the other namespace.
    If there is no shared root DNS server, and the root DNS servers for each
    forest DNS namespace are not running a member of the Windows Server 2003
    family, configure DNS secondary zones in each DNS namespace to route queries
    for names in the other namespace.

    Creating a forest trust
    http://technet.microsoft.com/en-us/library/cc756852.aspx



    --
    I hope that the information above helps you.
    Have a Nice day.

    Jorge Silva
    MCSE, MVP Directory Services

    Please no e-mails, any questions should be posted in the NewsGroup
    This posting is provided "AS IS" with no warranties, and confers no rights.
     
    Jorge Silva, Dec 30, 2008
    #4
  5. Hello CPickler,

    How did you configure DNS for the Trust?

    Best regards

    Meinolf Weber
     
    Meinolf Weber [MVP-DS], Dec 30, 2008
    #5
  6. Jorge de Almeida Pinto [MVP - DS], Dec 30, 2008
    #6
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.