G
Garry McMinds
Hello,
For business reasons, our office has two Win 2000 AD domains. The
problem: we can no longer map drives or NET USE from machines on DomainA
to the DC's of DomainB. We are using DomainB\userid credentials. We can
map drives to member servers and worksttns on DomainB. And we can map
from DomainB to any system on DomainA (using DomainA credentials). And
we can map from DomainB to DC's on DomainB. Previously, we could map
from DomainA to DomainB DC's. When it was an NT4 domain and for about 3
weeks after we migrated it to an AD domain. But last Friday at 4:00PM,
after I rebooted the 2nd DC because of a mouse lockup, we could
nolonger. Yesterday I removed the last NT4 BDC from the network, still
no joy.
Configuration
DomainA is one site of an multi-site single-forest domain; in this
site, DomainA contains one Win2000 DC, an Exchange 2000/Win2000 member
server and 6 win2000 workstations. Replication between the sites is
working. DomainB is single-site mixed 2003/2000/NT4. We have been
migrating DomainB from NT4 to Windows 2003/2000 (the first DC is 2003,
active directory was also installed on a 2000 member server promoting it
as the 2nd DC) there is an Exchange 2003/Win2003 member server, 2
win2000 member servers, 7 win2000 wrkstn's, 1 nt4 member server and one
nt4 wrksttn.
There is a one-way trust, DomainA trusts DomainB. I'm hoping to avoid a
two-way trust.
a NET USE command yields "System error 5 has ocurred. Access denied"
There were several 537 events in the DC's log.:
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 537
Date: 5/7/2004
Time: 3:57:21 PM
User: NT AUTHORITY\SYSTEM
Computer: TAIPAN
Description:
Logon Failure:
Reason: An unexpected error occurred during logon
User Name: peter
Domain: DomainB
Logon Type: 3
Logon Process: NtLmSsp
Authentication Package: NTLM
Workstation Name: PLATYPUS
And 529 events listing DomainA
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 529
Date: 5/10/2004
Time: 11:14:45 AM
User: NT AUTHORITY\SYSTEM
Computer: TAIPAN
Description:
Logon Failure:
Reason: Unknown user name or bad password
User Name: Peter
Domain: DomainA
Logon Type: 3
Logon Process: NtLmSsp
Authentication Package: NTLM
Workstation Name: PLATYPUS
Ideas appreciated.
Garry McMinds
For business reasons, our office has two Win 2000 AD domains. The
problem: we can no longer map drives or NET USE from machines on DomainA
to the DC's of DomainB. We are using DomainB\userid credentials. We can
map drives to member servers and worksttns on DomainB. And we can map
from DomainB to any system on DomainA (using DomainA credentials). And
we can map from DomainB to DC's on DomainB. Previously, we could map
from DomainA to DomainB DC's. When it was an NT4 domain and for about 3
weeks after we migrated it to an AD domain. But last Friday at 4:00PM,
after I rebooted the 2nd DC because of a mouse lockup, we could
nolonger. Yesterday I removed the last NT4 BDC from the network, still
no joy.
Configuration
DomainA is one site of an multi-site single-forest domain; in this
site, DomainA contains one Win2000 DC, an Exchange 2000/Win2000 member
server and 6 win2000 workstations. Replication between the sites is
working. DomainB is single-site mixed 2003/2000/NT4. We have been
migrating DomainB from NT4 to Windows 2003/2000 (the first DC is 2003,
active directory was also installed on a 2000 member server promoting it
as the 2nd DC) there is an Exchange 2003/Win2003 member server, 2
win2000 member servers, 7 win2000 wrkstn's, 1 nt4 member server and one
nt4 wrksttn.
There is a one-way trust, DomainA trusts DomainB. I'm hoping to avoid a
two-way trust.
a NET USE command yields "System error 5 has ocurred. Access denied"
There were several 537 events in the DC's log.:
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 537
Date: 5/7/2004
Time: 3:57:21 PM
User: NT AUTHORITY\SYSTEM
Computer: TAIPAN
Description:
Logon Failure:
Reason: An unexpected error occurred during logon
User Name: peter
Domain: DomainB
Logon Type: 3
Logon Process: NtLmSsp
Authentication Package: NTLM
Workstation Name: PLATYPUS
And 529 events listing DomainA
Event Type: Failure Audit
Event Source: Security
Event Category: Logon/Logoff
Event ID: 529
Date: 5/10/2004
Time: 11:14:45 AM
User: NT AUTHORITY\SYSTEM
Computer: TAIPAN
Description:
Logon Failure:
Reason: Unknown user name or bad password
User Name: Peter
Domain: DomainA
Logon Type: 3
Logon Process: NtLmSsp
Authentication Package: NTLM
Workstation Name: PLATYPUS
Ideas appreciated.
Garry McMinds