Problem establish trust between NT4 and W2K3 AD

[Steven Wong]

Hi,

Please help .. I don't know what am I doing wrong ..

NT4 Domain

1) server name : NTServerA
OS : NT4SP6
IP : 192.168.1.11
Role : PDC
2) server name : NTServerB
OS : NT4SP6
IP : 192.168.1.12
Role : BDC

Windows 2003 Active Directory

1) server name : W2K3ADA
OS : W2K3SP1 + Latest hot fixes
IP : 192.168.1.1
Role : Primary DC, DNS, GC
2) server name : W2K3ADB
OS : W2K3SP1 + Latest hot fixes
IP : 192.168.1.2
Role : Backup DC

All servers are on the same LAN and hardware switch, and NO firewall or
packet filtering in between servers.
Ping by NetBIOS names all OK on all servers

Whenever I create a trust from NTServerA, I get an error saying Could not
find domain controller for this domain.
I am not using WINS.

I have also followed the following Microsoft Technet but still no hope
http://support.microsoft.com/kb/246261/
http://support.microsoft.com/?kbid=180094

Anyone got any ideas ??
TIA

Steven

 

[Paul Bergson]

You have to have wins -or- an lmhost table to define the AD DC. I have
tried both and have had more success using WINS but check out the link
below.

http://support.microsoft.com/kb/245172/en-us



--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[Steven Wong]

thanks,
so I have to enable the WINS server on NT or W2K3 ?

 

[Jorge de Almeida Pinto]

to create a trust between some domain and a NT4 domain NetBIOS name
resolution is needed to find DCs in both domains. That can be established by
using a LMHOSTS file or using WINS.

You could install WINS on the W2K3 DC, point all servers for WINS to the
W2K3 DC and that way the servers will register the records in WINS. DCs in
each domain will register a 1Ch record in WINS that has the name of the
domain. That is the record in WINS that identifies DCs in domains

 

[Paul Bergson]

this most certainly would work but if you move all wins services to w2k3
make sure you point all your clients to the w2k3 server. Both servers and
workstations.

--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.


"Jorge de Almeida Pinto"

 

[Steven Wong]

Hi,

I have installed WINS on the W2K3 server and point all DCs (NT and AD) to
the WINS IP,
but still no luck ...

In my testing site, I had my NT4 PDC and W2K3 DCs trusted no problem without
using WINS or LMHOSTS file.

From my understanding .. I thought I only need to use WINS if I want to
trust 2 or more domains
accross WAN or in different IP subnets .. or am I wrong .. ?

Hmm... I really need to get this sort out because without successfully
trusted,
I cannot continue my migration from NT4 to W2K3 AD and also Exchange 5.5 to
Exchange 2003.

I will keep my search going ....

TIA

Steven

 

[Paul Bergson]

They were probably both on the same subnet and broadcasting resolved it for
you. Do both the NT4 and Windows 2003 have wins clients loaded and pointing
to the wins server?

From the windows 2003 dc can you ping the netbios name of the pdc and the dc
itself? From the pdc can you ping the dc and the pdc with the netbios name?

I don't know if the following would impact it or not but wondering about smb
signing?

http://support.microsoft.com/default.aspx?scid=kb;en-us;555038

http://support.microsoft.com/default.aspx?scid=kb;en-us;811497&FR=1&PA=1&SD=HSCH

--


Paul Bergson MCT, MCSE, MCSA, CNE, CNA, CCA

This posting is provided "AS IS" with no warranties, and confers no rights.