| Author |
Setting up an external trust
|
|
| bigjon 2003-10-14, 3:10 pm |
| I have 2 servers setup as domain controllers in separate forest, was wanting to test the external trusts in active directory domains and trusts. Each one is the global catalog server of its forest. Kepp on getting the RPC server is unavailable and also the "security database on the server does not have a computer account for this workstation relation ship. Any ideas? | |
| curiousgeorge 2003-10-14, 3:45 pm |
| Try this link and see if it helps.
Microsoft | |
| jeff_j_black 2003-10-14, 6:45 pm |
| You will want to insure that you have good name resolution between the two domains. Your DNS server in each domain could host a secondary zone that is synced to the other domains' primary zone.
You may have better luck establishing the trusts using the Netbios names of the domains rather than the FQDN of the domains, just make sure you have not turned off Netbios over TCP/IP. | |
| Jonoplunk 2003-10-15, 4:25 am |
| Jeff,
What would be the advantage of using Netbios names rather than the FQDN? I would have thought it is better to always use the FQDN. Not saying you are wrong, just interested in why you say that.
Cheers,
JP | |
| jeff_j_black 2003-10-15, 9:16 am |
| Netbios names can be resolved via broadcast. I have just found in the lab, when it comes to establishing trusts, use the netbios names. | |
| curiousgeorge 2003-10-15, 5:54 pm |
| Netbios may improve connectivity in a lab environment, but at the cost of added network traffic for broadcasts. In a production environment the DC's will not be on the same subnet, so netbios broadcasts will not help. Keep that in mind. | |
| jeff_j_black 2003-10-15, 11:04 pm |
| True, true... Either way you have to make accommodations for name resolution between the two domains. |
|
|
|