Location: List Archives

List Archives

This forum is an archive of all posts to our mailing list over the past few years.  The forum is set read only therefore to contribute you will need to join our list community.  See more info about this here.

 

When subscribed to the list you should use your standard email client to send your posts to ActiveDir@mail.activedir.org.

List Archives

Forums >ActiveDir Mail List Archive >List Archives
Subject: [ActiveDir] Two-way Cross Forest Realm Trust (Non-Transistive)
Prev Next
You are not authorized to post a reply.

AuthorMessages
r00tb00tUser is Offline

Posts:98

12/30/2008 7:19 AM  
Hey Guys n Gals,

I'm setting up my first cross forest trust (I have never done this
before, not even a cross domain trust!). It is non-transitive as I
want to manage Domain B in Forest B, from Domain A in Forest A, but I
don't want people logging onto different computers etc all round the
site, you know I don't need to extend the trust that far, its more so
I can manage users, and shares on other servers etc. This a realm
trust not an external trust because its a mixture of Mac and Windows
servers, even though the PDC for that domain is a Windows 2003 Server
(and all windows servers in all domains in this set up are, so I have
raised the domain and forest levels accordingly) assume I need to be
doing this on a kerberos level as my Mac servers run OK via kerberos
with my Windows servers.

As far as I can tell, the trusts were made successfully (in that there
were no erros) but how can I actually verify that? I find that now I
have made my trusts I am in the dark about how to facilitate them. How
can I start allowing Domain and Enterprise Admins in Domain A to have
access to folders in Domain B (set permissions for example). How can I
make them see each other? Does that make any sense? I have made trusts
across the forests but each domain still doesn't strictly know the
other exists, how can I make them "see" each other and be aware of
their presence so I can manage users on Domain B in Forest B from my
PDC in Domain A of Forest A, for example?

If I haven't quite made my self clear please let me know and I will
try to phrase this better.

Thanks for reading listees,

Regards,
James.


-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GIT/MU/U dpu s: a--> C++>$ U+> L++> B-> P+> E?> W+++>$ N K W++ O M++>$ V-
PS+++ PE++ Y+ PGP t 5 X+ R- tv+ b+> DI D+++ G+ e(+++++) h--(++) r++ z++
------END GEEK CODE BLOCK------
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ma/default.aspx
You are not authorized to post a reply.
Forums >ActiveDir Mail List Archive >List Archives > [ActiveDir] Two-way Cross Forest Realm Trust (Non-Transistive)



ActiveForums 3.7
Friends

Friends

VisualClickButoton
Members

Members

MembershipMembership:
Latest New UserLatest:mish
New TodayNew Today:2
New YesterdayNew Yesterday:5
User CountOverall:4858
People OnlinePeople Online:
VisitorsVisitors:60
MembersMembers:0
TotalTotal:60
Online NowOnline Now:

Ads

Copyright 2009 ActiveDir.org
Terms Of Use