Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ADMT, NT to 2003, Migrated Users cannot access NT folders?

Status
Not open for further replies.
Dublin73

Dublin73

IS-IT--Management
Apr 26, 2005
236
US
OK All, let’s see how good you are!

Two Domains:

NT 4.0 < NTDOMAIN
Windows 2003 < 2003DOMAIN

Trust Relationships exist between the two domains and have successfully been validated

Two user accounts:

usernameNT < user account in the NT 4.0 Domain
username2003 < The “usernameNT” user account that has been migrated to the Windows 2003 domain using the ADMT

SID filtering has been disabled on the 2003DOMAIN using the “netdom” utility

Network Shares:

For both shares below, “usernameNT” has been given access, “username2003” has not.

Share1 < located on a PC in “NTDOMAIN”
Share 2 < located on a PC in “2003DOMAIN”

When I log into the network using the “username2003” user account from a PC in the “NTDOMAIN” I cannot access “Share1”. I can however access “Share2”

When I log into the network using the “username2003” user account from a PC in the “2003DOMAIN”, it’s the same result. Again….. I cannot access “Share1”, but I can still access “Share2”

Based on that, I’m happy that the usernameNT SID history has migrated across to username2003. I’ve also ran the ADMT “Security Translation Wizard” on the server that houses “Share1” and this updated successfully. I still however, cannot access Share1.

Anyone willing to give this one a go?

Thanks ahead of time, to anyone who reckons they can help!


 
Sort by date Sort by votes
Have you looked at share permissions? Win2k3 is locked down, and the "everyone" permission is not allowed. I would look there first.
 
Upvote 0 Downvote
Hey thanks for responding. I've got it sorted!!!! After reading the following post...


If you look at ADgod's posting, I changed the settings that he recommended. Important to note!!!!!

Where he has...

network security: LAN manager authentication level should be set to Send LM & NTLM

I had to set this to... network security: LAN Manager authentication level: Send LM & NTLM - use NTLMv2 session security if negotiated
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

tscstl
  • Locked
  • Question
access to local folder
Replies
1
Views
363
hairlessupportmonkey
hairlessupportmonkey
StevenFromSouth
  • Locked
  • Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
324
StevenFromSouth
StevenFromSouth
DTGMI
  • Locked
  • Question
WIN 10 Pro PC &amp; Adding back to our Network
Replies
0
Views
585
DTGMI
DTGMI
microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
684
microsGuy16
microsGuy16
maybeimaleo
  • Locked
  • Question
Can SMTP Be Migrated From 2008 R2 to 2019?
Replies
1
Views
349
maybeimaleo
maybeimaleo

Part and Inventory Search

Sponsor

Back
Top