+ Post New Thread
Results 1 to 8 of 8
Windows Server 2000/2003 Thread, Trust/DNS issue in Technical; Hi, A little about what I have recently done before I tell you the problem. I have two domains, admin ...
  1. #1

    Join Date
    Feb 2009
    Location
    UK
    Posts
    126
    Thank Post
    8
    Thanked 4 Times in 3 Posts
    Rep Power
    12

    Trust/DNS issue

    Hi,

    A little about what I have recently done before I tell you the problem.

    I have two domains, admin and curriculum. There's trust between the domains. My curriculum domain server (server1) also had Exchange on it and was having issues. I created two new servers (server2 and server3) and made them both curriculum DC's. I transferred all the FSMO roles over to the new servers and demoted the old one. I moved DNS and DHCP over too. I left server1 as my Exchange/file server. The trust seemed to have replicated over to the new servers and shows up.

    I can ping server1,2 and 3 from the admin server and visa-versa.

    I can type in \\admin from the curriculum servers and browse it and I can also do that from any curriculum machine (and they can access SIMS on admin OK for registers etc.).

    However from admin if i try to access server1 it asks me for a username and password. If I try to access server2 or server3 I get a message saying that it can't find a logon server.
    I am also having problems when the admin machines try to access Exchange on server1 as it asks them for their curriculum username and password when it previously allowed them access to their mailboxes through their admin account.

    If I look at security settings or share permissions for shares on server1 all the admin users have changed into the big long string of letters as if it cannot find the account. If I try to add to the permissions it will show the admin domain but won't find any user accounts on it.

    I'm a bit unsure if this is a DNS issue or a trust issue. Any help would be appreciated, I'm sure it's just something daft that I've missed.

  2. #2

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,816
    Thank Post
    272
    Thanked 1,138 Times in 1,034 Posts
    Rep Power
    350
    Have you got WINS set up? [ame="http://en.wikipedia.org/wiki/Windows_Internet_Name_Service"] Wins [/ame]

  3. #3

    Join Date
    Feb 2009
    Location
    UK
    Posts
    126
    Thank Post
    8
    Thanked 4 Times in 3 Posts
    Rep Power
    12
    I haven't, as far as I'm aware, I've never had it set up. I don't have any pre 2000 machines.

  4. #4

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,816
    Thank Post
    272
    Thanked 1,138 Times in 1,034 Posts
    Rep Power
    350
    i only had xp clients at my last place but we had some random trust issues and then once we set up wins it worked - the two domains where on a different subnets tho.

    which domain is master? although you may be able to ping the server can you ping the domain name e.g curriculum.local from an admin domain machine?

  5. #5

    Join Date
    Feb 2009
    Location
    UK
    Posts
    126
    Thank Post
    8
    Thanked 4 Times in 3 Posts
    Rep Power
    12
    Hi,

    I can't ping the domain.local from curriculum or admin and visa-versa.

    Should I try setting WINS up on both domains DC's? I'm pretty sure we never had WINS on before though.

  6. #6

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,816
    Thank Post
    272
    Thanked 1,138 Times in 1,034 Posts
    Rep Power
    350
    Quote Originally Posted by Jambo_C View Post
    Hi,

    I can't ping the domain.local from curriculum or admin and visa-versa.

    Should I try setting WINS up on both domains DC's? I'm pretty sure we never had WINS on before though.
    Well the Problem is that you can't ping the other domain so WIN's might not be the problem if you go into the DNS is there any entries for the domain.local as you may find that the domain is still pointing to the old domain controller which is now the file server.

    I think the problem is that the machines/servers cannot see the other domain controllers therefore there is no way for them to authenticate against that AD on the domains

  7. #7

    Join Date
    Feb 2009
    Location
    UK
    Posts
    126
    Thank Post
    8
    Thanked 4 Times in 3 Posts
    Rep Power
    12
    Hi,

    I think I've found the problem. On the admin DNS server the old server1 was set as the forwarder for the curriculum domain and there weren't any forwarders set for the admin domain on the new DC's.

    I've added these and it seems to have fixed the issue.

    Cheers.

  8. #8

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,816
    Thank Post
    272
    Thanked 1,138 Times in 1,034 Posts
    Rep Power
    350
    Quote Originally Posted by Jambo_C View Post
    Hi,

    I think I've found the problem. On the admin DNS server the old server1 was set as the forwarder for the curriculum domain and there weren't any forwarders set for the admin domain on the new DC's.

    I've added these and it seems to have fixed the issue.

    Cheers.
    No problem at least you got it fixed

    Toby

SHARE:
+ Post New Thread

Similar Threads

  1. Help with weird DNS issue
    By Cruiser in forum Windows Server 2000/2003
    Replies: 7
    Last Post: 22nd April 2009, 08:46 PM
  2. Server 2008 AD issue across forest trust with Server 2003 R2 AD
    By dhess1013 in forum Windows Server 2008
    Replies: 5
    Last Post: 11th October 2008, 10:00 AM
  3. one way nontransitive trust issue
    By projector1 in forum Windows
    Replies: 2
    Last Post: 15th February 2008, 06:58 PM
  4. DNS Problem - Domain Trust
    By mortstar in forum Wireless Networks
    Replies: 2
    Last Post: 17th August 2007, 10:19 AM
  5. Strange DNS issue
    By edie209 in forum Windows
    Replies: 10
    Last Post: 3rd July 2006, 01:15 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •