Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Trusts over a WAN w/o servers present at remote sites

Status
Not open for further replies.
bubarooni

bubarooni

Technical User
Joined
May 13, 2001
Messages
506
Location
US
I have a three node WAN connected by Frame, lets call them Home, RemoteSite1, RemoteSite2. Each site has it's own subnet (Home- 192.168.1.x, RemoteSite1-192.168.2.x, RemoteSite2-192.168.3.x). Home has NT 4.0 servers acting as PDC, BDC's and an Exchange Server 5.5 SP4. DHCP is handled at Home by NT 4.0 and at the remotes by a Cisco 1750 router.

At the remote sites when I try to connect back across the frame to the Exchange server I always encounter a problem with permissions; something with not having permission to access the users mailbox. I think because the user has not been authenticated on the Home sites DC's.

I don't think the different subnets are going over well with the Home sites DC's. Can I setup a trust between the Home site and the Remote subnets some way even though the two remote sites don't have any servers to handle authentication or set trust? Even third party solutions would be welcome.

Any ideas?
 
Sort by date Sort by votes
Well the first thing to find out is if the remote machines are logging into the domain. They will get a "Cannot find domain controller" error message when they log in if they aren't, or you can check the value for %LOGONSERVER% and see if it is the local machine (in which case they aren't logging onto the domain (or are using chached account information)), or onto one of the DCs.

Since the PCs are (presumably) a part of the domain, there is no need to setup any sort of trusts. Provided those PCs know how to get to the DCs and authenticate, then they should be able to access network resources. [auto] MCSE NT4/W2K
 
Upvote 0 Downvote
The PC's are definitely not logging on to the domain. Can I do this across the routers that seperate the remote site machines and the DC's?

They are set to workgroup currently since setting them to domain results in the "Cannot find domain controller" error message.

Do I need to enter a WINS server value or something in the HOST file?

Thanks
 
Upvote 0 Downvote
Provided your routers aren't port-blocking, there is no reason they can't logon to the domain.

If you get "Cannot find domain controller" messages, then you either need to point those clients to a valid WINS Server, or edit/create an LMHOSTS file, so the machine can find where the domain controller(s) are.

A WINS Server reference would be much prefered over any LMHOSTS entires, as WINS is dynamic and entries are set once for all PCs, whereas LMHOSTS files are static, and set on each PC (large admin overhead).

Once you have setup domain-name to IP-address resolution (using one of the two above methods), rejoin then logon to the domain, and you should be able to access network resources.

Hope this helps. [auto] MCSE NT4/W2K
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

MaioMaio
  • Locked
  • Question Question
Server Remote Desktop License
Replies
0
Views
720
MaioMaio
MaioMaio
mangentle
  • Locked
  • Question Question
What are the key advantages of using Microsoft Windows Servers for businesses?
Replies
1
Views
1K
gbaughma
gbaughma
techbrain1
  • Locked
  • Question Question
Explorer Error the operating system is not compatible with this product
Replies
0
Views
288
techbrain1
techbrain1
DTGMI
  • Locked
  • Question Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
799
DTGMI
DTGMI
DrB0b
  • Locked
  • Question Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
1K
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top