Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Configure DNS for Trust Relationship

Status
Not open for further replies.
gergt

gergt

MIS
Aug 25, 2002
14
JP
Hello,
I am trying to configure a one way trust relationship between two Win2K domains over a WAN. Can anyone explain how I configure DNS on the two domains so that the PDC on each domain can be located when creating the trust? company.com.xx is the trusted domain and company.com.yy is the trusting domain.

I have created a forward lookup zone on each DNS for the respective remote domains. e.g. on the trusting server the zone entry is company.com.xx, but what entry do I put under that so that the remote PDC can be found?
I have tried adding the host name (fully qualified) of the remote PDC and an alias to the remote domain with no success
I am trying to avoid WINS or LMHOSTS if possible.
Any advice would be appreciated.
Gerg
 
Sort by date Sort by votes
First create the forest as it is required.
Configure a server as Global Catalog. The DNS will be automatically configured (as long as it is ADI zone).

It is difficult to explain al the steps. I think that you already know them.
A forest is used when you have more domains and they are not using same contigous namespace. Do you want this?
In this case having a forest you can share resources between the domains. For locating resources in the quickest possible time Global Catalog is a must.
Configuring a forest involve also assigning all sort of tasks to some servers (some master servers).

I hope that my hints will help you. Indeed what you are intending to do require planning and a lot of knowledge.


Gia Betiu
m.betiu@chello.nl
Computer Eng. CNE 4, CNE 5
 
Upvote 0 Downvote
Yes, I have used non contiguous namespace to reduce traffic across the WAN, as per advice from Microsoft. My goal for shared resources is for one directory share for file transfer and one remote printer.
I am unfamiliar with the Global Catalog concept with respect to DNS and wonder if it may be more than I require. Thanks for the advice - I'll follow it up

Gerg
 
Upvote 0 Downvote
Is better to avoid using more domains. If you have slow link, it can work also if you are using sites properly configured.
Presence of slow network links alone is not a good reason to break an organization in multiple domains. Replication traffic can be managed independently of the domain architrcture (sites).
Also if you intended to have domains better to use a domain tree, and at least you will have a contiguous name space.

Gia Betiu
m.betiu@chello.nl
Computer Eng. CNE 4, CNE 5
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

techbrain1
  • Locked
  • Question
Trust relationship issue 1
Replies
3
Views
798
araheusaff
araheusaff
rzammit82
  • Locked
  • Question
Windows Server 2016 - DNS/AD problem
Replies
1
Views
964
suncit
suncit
Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
832
gbaughma
gbaughma
mangentle
  • Locked
  • Question
What are the key advantages of using Microsoft Windows Servers for businesses?
Replies
1
Views
1K
gbaughma
gbaughma
nukeinfer
  • Locked
  • Question
Internet restrictions for isolated PCs in the Network
Replies
1
Views
666
mangentle
mangentle

Part and Inventory Search

Sponsor

Back
Top