| Author |
Message |
Seth
Guest
|
 Posted:
Wed Nov 09, 2005 9:51 pm Post subject:
can't create trust to external domain |
|
|
Hi,
I have two Windows Server 2003 domain controllers in two separate domains
(one per domain). Both domains are at the Windows Server 2003 functional
level. Both have DNS installed for their own domains are are secondary DNS
servers for each other.
On SERVER1 in DOMAIN1, when I go into AD Domains and Trusts and try to
establish a trust to the other domain, when I type in the DNS name (or the
NetBIOS), I get the following message:
New Trust Wizard
Trust Type
The name you specified is not a valid Windows domain name. Is the specified
name a Kerberos V5 realm?
Then you can select the "appropriate" trust type: either "Realm Trust" or
"Trust with a Windows domain"
I've tried both and neither work.
Any ideas?
Seth |
|
| Back to top |
|
 |
Ace Fekay [MVP]
Guest
|
| Posted:
Thu Nov 10, 2005 1:51 am Post subject:
Re: can't create trust to external domain |
|
|
In news:eFo3hXX5FHA.3276@TK2MSFTNGP10.phx.gbl,
Seth <sedval@community.nospam> made this post, which I then commented about
below:
Seth, see my response in the networking group.
Ace |
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Thu Nov 10, 2005 1:51 am Post subject:
Re: can't create trust to external domain |
|
|
In news:uhgF16X5FHA.3312@TK2MSFTNGP15.phx.gbl,
Paul Williams [MVP] <ptw2001@hotmail.com> made this post, which I then
commented about below:
| Quote: | Is the domain single labelled? That is, is it domain-name as opposed
to domain-name.com?
Does it have any weird characters in it?
Does this work the other way?
Are you sure DNS is working? Can you resolve:
nslookup -type=srv _ldap._tcp.dc._msdcs.domain-name.com
From the other domain?
|
Hi Paul,
I had asked him for some config info from both of the Domains, (ip[config
/all) to help determine if a single label name, and which is 2003 level, the
forest or just the domain, because I wasn't sure from reading his post.
For Seth: If forest, of course, it would use DNS, but if external, it would
only need NetBIOS name resolution support.
Ace |
|
| Back to top |
|
|
Seth
Guest
|
| Posted:
Thu Nov 10, 2005 1:51 am Post subject:
Re: can't create trust to external domain |
|
|
Hi, I got it working as soon as I domain transferred the _msdcs.blablablah
zones.
thanks,
Seth
"Paul Williams [MVP]" <ptw2001@hotmail.com> wrote in message
news:uhgF16X5FHA.3312@TK2MSFTNGP15.phx.gbl...
| Quote: | Is the domain single labelled? That is, is it domain-name as opposed to
domain-name.com?
Does it have any weird characters in it?
Does this work the other way?
Are you sure DNS is working? Can you resolve:
nslookup -type=srv _ldap._tcp.dc._msdcs.domain-name.com
From the other domain?
--
Paul Williams
Microsoft MVP - Windows Server - Directory Services
http://www.msresource.net | http://forums.msresource.net
|
|
|
| Back to top |
|
|
Paul Williams [MVP]
Guest
|
| Posted:
Thu Nov 10, 2005 1:51 am Post subject:
Re: can't create trust to external domain |
|
|
Is the domain single labelled? That is, is it domain-name as opposed to
domain-name.com?
Does it have any weird characters in it?
Does this work the other way?
Are you sure DNS is working? Can you resolve:
nslookup -type=srv _ldap._tcp.dc._msdcs.domain-name.com
From the other domain?
--
Paul Williams
Microsoft MVP - Windows Server - Directory Services
http://www.msresource.net | http://forums.msresource.net |
|
| Back to top |
|
|
Ace Fekay [MVP]
Guest
|
| Posted:
Thu Nov 10, 2005 9:51 am Post subject:
Re: can't create trust to external domain |
|
|
In news:uSrFQXY5FHA.3636@TK2MSFTNGP09.phx.gbl,
Seth <sedval@community.nospam> made this post, which I then commented about
below:
| Quote: | Hi, I got it working as soon as I domain transferred the
_msdcs.blablablah zones.
thanks,
Seth
|
Good to hear. I assumed you had created secondaries of that too.
Ace |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in