Trusting a NT4 Domain fails

[Rick]

When i attempt to setup a trust to allow for a Windows
2000 domain to Trust a Windows NT domain it fails.

When i verify the trust I get an Secure Channel (SC)
error:

The security database on the server does not have a
computer account for this workstation trust relationship

Anyone have any Ideas?

 

[SaltPeter]

The Secure Channel error is most likely due to a Group Policy setting which
specifies "Send LM and NTLM - use NTLMv2 session security if negotiated" ,
digitally sign communications(always) or encryption (strong session key).
Verify the GPO:
Computer Configuration\Windows Settings\Security Settings\Local
Policies\Security Options

NT4 uses netbios to locate domains, W2K uses DNS name resolution. So an
example that might let an NT4 PDC see a foreign W2K DC would be to enter the
W2K's ip address in NT4's lmhost file.

If the trust is 2-way, add an entry in W2K's host file to locate a foreign
NT4 PDC.

Needless to say, i'm assuming that tcp/ip is installed and that the path in
between domains is routable.