What about the 1B records? IIRC, there should also be 1B records in WINS for the domain. I'd do a WINS check for all records pretaining to both domain names. My bet is that you have some WINS records that still point to the old IP addresses.
Diane -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Sobey Sent: Saturday, July 06, 2002 12:52 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Trusts between AD and NT4 - HELP!! Hi Guys, For migration purposes I have established a one way trust between my legacy domain (trusting) and my new AD (trusted). Yesterday, both DCs got powered off one at a time, and moved to new homes in the comms room. After they were powered back up, the trust had failed. All attempts to re-establish it using the GUI tools fail - the NT4 User Management refuses to add the trust with 'Cannot Find a Domain Controller for this domain'. When I use netdom, from either the trusted or trusting DCs, it reports that the command has completed successfully, the correct entries appear in the trusted/trusting domains lists for the domains, but verification fails, as does secure channel reset with 'ACCESS DENIED'. Both sets of DCs point at the same domain, and the WINS 1c records on both sides are correct. They can ping each other by hostname. Does anyone have any idea how to fix this? I am at my wits end, and users are due in Monday who will not be abke to work if the trust isn't in place! Thanks for any help you can offer. Paul List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
