Questions tagged [trust-relationship]
81 questions
0
votes
2 answers
validate domain trust command, netdom trust /verify doesn't work
I have an external trust with my Active Directory domain. I want to validate the trust from a command so that I can do it remotely and don't have to open Remote Desktop and navigate to the AD domains and trusts console. I have read that netdom trust…
Roman
- 386
- 5
- 16
0
votes
1 answer
Not able to "Run As" any application on a server in the TRUSTING domain using an account from the TRUSTED domain
There are two domains: "dom1" and "dom2".
"dom1" is the trusting domain.
"dom2" is the trusted domain.
I.e. there is a one way trust where domain "dom1" trusts domain "dom2".
Servers joined to domain "dom2" and logged in with an account in the…
slayernoah
- 1,570
- 2
- 12
- 19
0
votes
1 answer
Setting up a trust to an AD environment with DCs on premise and in Azure, how can I limit AD traffic to only the on-premise DCs?
We are setting up a trust between a stand-alone on-premise domain (DMZ from now on) and a corporate domain which is AD/AAD (synched) (CORP from now on) so that users from CORP can log into servers joined to DMZ. To be clear, they're on separate…
R C
- 3
- 2
0
votes
1 answer
How can I set the 'The other domain supports Kerberos AES Encryption' setting programmatically?
In the GUI (Active Directory Domains and Trusts MMC Snap-in (domain.msc)), you can set the "The other domain supports Kerberos AES Encryption" setting for a trust relationship:
I am looking for a way to set this setting programmatically. I already…
stackprotector
- 445
- 1
- 3
- 20
0
votes
1 answer
Ubuntu 21.10 with Samba AD unable to create domain trust account
I am trying to add domain trust account for additional kerberos5 (MIT) domain
in Samba AD DC with command:
net rpc trustdom add
-UAdministrator%
What happens is that the account is created into Samba ldap…
Sami Hulkko
- 1
- 1
0
votes
0 answers
Application Requires Cross Domain Authentication - No trust
I've an application that going forward is going to require cross domain authentication using an AD service account across 2 separate organisations - for example domain A application needs to authenticate with domain B backend.
Does anyone know of a…
0
votes
1 answer
Ubuntu login fails with a user of a trusted IDM domain (AD)
We have an IDM Server on a Rocky Linux distro configured with a Trust to a Samba AD DC (also installed on a Rocky Linux).
So we created a user 'usupru2' on Samba AD DC under adtest.uy domain.
Then we enroll an Ubuntu 20.04 client to IDM and when we…
Mateo
- 11
- 4
0
votes
0 answers
Switched BizTalk's database domain, but cannot remove DC
I've inherited an older system involving BizTalk (Server 2010) where the application and its database were on separate servers on separate domains.
There has been efforts to modernize the systems and applications, and I had to roll with it when the…
Temm
- 1
0
votes
0 answers
Cannot RDP across one-way forest trust from child domain
We have an AD identity forest with a one-way incoming transitive forest trust from a resource forest. Name suffix routing is enabled.
Users in the identity forest root domain can RDP to hosts joined to the resource forest
however,
Users in the…
rmarles
- 21
- 3
0
votes
0 answers
How can I force Active Directory integrated DNS to only return SRV records for specific domain controllers based on the subnet of the client?
I have a set of several offices joined using various combinations of IPsec VPNs and an MPLS network. The majority of sites form a mesh arrangement using the VPNs, but site B only has a single IPsec VPN to site A - site B cannot reach any of the…
Daniel Arkley
- 92
- 6
0
votes
2 answers
2-way trust between 2 server 2016 domains active, but unable to browse each others domains
Good afternoon, I have a 2 way transative trust between 2 domains, i have also validated them in the Active directory domains and trust tool, where they both show active.
From each domain controller i can ping the other domain controller by name and…
0
votes
0 answers
Join PCs that were on old Windows 2012 server to new server AND new domain without breaking SIDS and trust
Background: Had a small 4 PC office on Server 2012r2 with domain named OLD-DOMAIN. Server was old and wonky and had to restore from full system image backup that was recent (as in a few days old).
PCs ran fine with server disconnect to router as…
SKidd
- 33
- 1
- 6
0
votes
1 answer
Forest Trust Relationship and DNS
I am creating a new single domain Forest, SCP.com and I have an existing single domain Forest, ICS.com
Have an existing internal DNS server in ICS.com that has a Forward Lookup Zone for the domain SCP.com pointing to a handful of web applications…
DAdmin
- 1
0
votes
1 answer
How can I delete an outgoing trust on Windows Server when an internal error occurs?
Unfortunately, the Active Directory Domains and Trusts MMC Snap-in (domain.msc) lets you create an outgoing trust to a Domain Controller (in other words: specifying the name of a Domain Controller as the name of the Domain to trust). Even more…
stackprotector
- 445
- 1
- 3
- 20
0
votes
0 answers
Slow Application with User Accounts from other Domain - Active Directory Domain Trust Issue?
I have a strange issue and hope someone can help me finding the cause.
Environment:
2 companies (let's say Company A and Company B) with seperate IT-infrastructures.
Each one has its own network, own active directory, etc.
Company A is hosting an…
Niko21
- 49
- 5