Trust between two forests failing

[shinedog]

I have a trust configured on DOMAIN-A which is all Windows 2003 Domain Controllers running in native mode. DOMAIN-B is a mixed mode domain with one Windows 2000 and one Windows 2003 domain controller. When I try and establish the trust from DOMAIN-B, I get "Active Directory cannot verify the trust" followed by suggestions to verify the trust exists on the other side and the passwords are the same followed by an error "The error returned was: The security database on the server does not have a computer account for this workstation trust relationship".

Now considering they are in seperate forests, should they even require computer accounts in each other forests? And if so, which computers should have accounts, the PDCs? DNS is functioning properly between the two domains as I can resolve any comptuer in each domain from the other (secondary DNS servers in each domain). Not sure if it is pertinent but the only other odd thing is that a get a 1311: "there are currently no logon servers available to service the logon request" message when trying to either Start/Run \\<server> or net use \\<server> in DOMAIN-A from DOMAIN-B. If I provide domain-specific accounts from the domain the resource is in, I have no problem NET USE'ing the resource.

Prior to this, the same forest DOMAIN-B had a trust established to another forest which has been migrated over to the what is now a brand new forest DOMAIN-A. I had no problem establishing the trust in that setup.

Any one with ideas?