Prep for setting up trust between Win2k and 2003

Discussion in 'DNS Server' started by AmytDev, Jul 24, 2007.

  1. AmytDev

    AmytDev Guest

    Can someone list the exact steps that I could use to set up a trust between 2
    forests? One forest is Win2k dc servers with a root and child domain and the
    other forest is Win2003 dc servers. The trust between the child domain with
    Win2k dc server in one forest is working with the Win2003 dc servers in the
    second forest. However, the trust between the root domain with Win2k in the
    first forest is not working with the Win2003 dc server in the second forest.
    Please advise. I don't know where to start to troubleshoot.
     
    AmytDev, Jul 24, 2007
    #1
    1. Advertisements

  2. AmytDev

    Herb Martin Guest

    You cannot setup a trust between two Forests if one of them has any
    Win2000 DCs.

    Only "Win2003 Forest Functional Level" forests can setup Forest level
    trusts.

    For anything with Win2000 DCs (or NT) you must use an EXTERNAL
    trust between "each pair of domains" in the two forests.

    External trusts are ONE WAY and NON-TRANSITIVE so each relationship
    must be set up explicitly.
    Frequently the failure to setup an External Trust is due to problems with
    NetBIOS name resolution -- external trusts are designed to also work for
    NT domains and so are semi-dependent on NetBIOS.

    If you need NetBIOS AND you have more than one subnet then you
    need (replicated) WINS Server(s) with every computers, especially
    DCs, as a WINS client.
     
    Herb Martin, Jul 24, 2007
    #2
    1. Advertisements

  3. AmytDev

    AmytDev Guest

    You are correct. I was setting up an external trust between the root and
    child domain of Forest A that have Win2k DCs with Forest B that have Win2003
    DCs. The external trust between the child domain (x.abc.prv) in Forest A is
    working with Forest B (y.local). The problem is the external trust between
    the root domain in Forest A (abc.prv) is not working with Forest B (y.local).
    Were you suggesting making the DCs WINS clients? Please advise.

    Thanks.
    amytdev
     
    AmytDev, Jul 24, 2007
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.