Permissions with Trusts

  • Thread starter Thread starter Arc J. Thames
  • Start date Start date
A

Arc J. Thames

I am trying to set up permissions between our company and one of our sister
companies. When trying to assign permissions to resources in my domain,
giving the sister company permissions to our resources, their domain name
shows up in the list but when you click on it...it searches for a little bit
and then then says the domain can not be contacted. I can ping all of their
DC's and I can view the accounts when trying to assign permissions from one
of my domain controllers but not from anyother server. I have tried
creating a zone in DNS and also tried created domain records in DNS, no luck
yet. Anyone had this problem/know what to do?


Arc
 
Sounds like a name resolution problem.

How did you configure the zones? One way is to hold a secondary copy of
DOM1 in DOM2 and vice-versa. You shouldn't really create the SRV records
manually if you're not using BIND -let Windows do it - less room for error.
Restarting netlogon will create the appropriate SRV records, providing the
DHCP client service is running -even though you're not a DHCP client!


--

Paul Williams
_________________________________________
http://www.msresource.net


Join us in our new forums!
http://forums.msresource.net
_________________________________________


PS...It says "The server is not operational"
 
This sounds like a DNS issue. Have you run a network trace to see what's
going on? That's where I would start.

--
--
Brian Desmond
Windows Server MVP
(e-mail address removed)12.il.us

Http://www.briandesmond.com
 
Gotta be something other then SRV records because on some servers I can
connect to it and we have none of their SRV records on our side.

Arc
 
Where's the nearest GC? If these domains are in the same forest, a local
(to the site) GC is very much needed. If these domains reside in different
forests, then it is almost certainly a name resolution problem. Do all
clients point to the same DNS servers? Are some DNS servers setup as
forwards and others not? Is the IM down (if same forest and not all DCs are
GCs)? Have you had any replication issues?

If you don't have a copy of their DNS on your side, I assume you're
forwarding across to them?!?

Can you try and provide a little more background to the domains and sites
please? What versions of Windows? What modes are the Directory's running
in, etc.?


--

Paul Williams
_________________________________________
http://www.msresource.net


Join us in our new forums!
http://forums.msresource.net
_________________________________________


Gotta be something other then SRV records because on some servers I can
connect to it and we have none of their SRV records on our side.

Arc
 
Back
Top