If you're using Server 2003 for DNS you can set up conditional forwarding. When you say you have a domain entry in each for the other forest, are you talking about a secondary zone? Your computers in officeB need to be able to see the DNS in officeA to get the SRV records that are published over there for AD (conditional forwarding) or they need to see a secondary zone on their known (officeB) DNS for the officeA domain, because that would have a full copy (and vice versa). If you're just publishing a few A and MX records, that's not enough to create a trust or do any AD management because you're missing the SRV records.
Rich -----Original Message----- From: Oliver Marshall [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 04, 2004 8:14 AM To: [EMAIL PROTECTED] Subject: [ActiveDir] Settings up trusts between two forests. DNS I have two forests. One at Office A (officeA.co.uk) and one at Office B (officeB.co.uk). I want to create a two way trust so that both forests trust each other. In the Domains & Trusts, I create a new entry and enter the domain name to trust and a password. When I click ok it warns me that the other domain cannot be contacted. Now, the forests are connected via a vpn handled by a Cisco Firewall and each server is able to ping the other, and users at each site are able to access files etc by typing something along the lines of \\servername.officea.co.uk\files\myfile.doc I'm sure it must be something to do with the DNS of each server. Each server is running DNS for its forest, and has a domain entry for the other forest, with MX records etc (so that mail between sites goes via the VPN) and a few host entries to help the users with accessing the occassional file. The question is what the &^%$ do I have to do to get one forest to see the other in such a way that I can create a trust between them ? Olly List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ -------APPLEBEE'S INTERNATIONAL, INC. CONFIDENTIALITY NOTICE------- PRIVILEGED / CONFIDENTIAL INFORMATION may be contained in this message or any attachments. This information is strictly confidential and may be subject to attorney-client privilege. This message is intended only for the use of the named addressee. If you are not the intended recipient of this message, unauthorized forwarding, printing, copying, distribution, or using such information is strictly prohibited and may be unlawful. If you have received this in error, you should kindly notify the sender by reply e-mail and immediately destroy this message. Unauthorized interception of this e-mail is a violation of federal criminal law. Applebee's International, Inc. reserves the right to monitor and review the content of all messages sent to and from this e-mail address. Messages sent to or from this e-mail address may be stored on the Applebee's International, Inc. e-mail system. List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
