Best practices for setting up a non-transitive trust between two AD domains

F

Fletcher

hello -

We acquired another company, and just set up a VPN with them. Now we need to
configure a trust between the domains. The have AD and so do we, (totally
different name spaces). So what is the best practice for this?

Do you want to configure the forward lookup zone for their domain name
first, and then set up their DNS servers as allowed IP addresses that will
do zone transfer with us? I am just guessing here... but then we could set
up the SOA servers, etc... or is there a better way to do this? WE want toe
zone to be AD integrated also so we can have each others host names, etc...
in our respective ADs - is this a problem?

Any advice would be appreciated very much!

Thanks!
 
A

aaron

1) set up the zones to allow transfers to the other domains DNS
2) add a secondary zone for the opposite domain on each
3) because these are ad integrated zones they will replicate with DC's in
that domain, using secondary zones will allow you to keep current copies of
the zone on each domain.
4) setup servers in the notification tab of DNS for each zone.

hth,
aaron
 
F

Fletcher

thanks Aaron, after some fidgeting and following your suggestions we got it
to work

Craig
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top