Trust relationship between two domains

S

Sync Walantaji

Hi

We have a company central domain called:
abc.company.com

Our department have a domain call
xyz.company.com

Currently DNS information from xyz domain is forwared to central dns
server if not found in xyz domain.
Otherwise, there's no direct relationship between the two domains.

I want to know how I can have xyz domain to trust certain users from
abc domain and do not have to recreate users on xyz domain if they
already exist in abc domain. So if a user login to abc\username on
his computer and have the right permission on xyz domain, they can go
directly the resouce in xyz domain without type xyz\username and
password.

Thanks
 
H

Herb Martin

Sync Walantaji said:
Hi

We have a company central domain called:
abc.company.com

Our department have a domain call
xyz.company.com

Currently DNS information from xyz domain is forwared to central dns
server if not found in xyz domain.
Otherwise, there's no direct relationship between the two domains.

I want to know how I can have xyz domain to trust certain users from
abc domain and do not have to recreate users on xyz domain if they
already exist in abc domain.
Click to expand...

Setup an external trusts between the domains; chance are you
will also have to set up a (fully replicated) WINS server set.

External trusts are (at least partially) based on NetBIOS names,
which don't work across multiple domains or multiple subnets
without help (e.g., WINS server)
So if a user login to abc\username on
his computer and have the right permission on xyz domain, they can go
directly the resouce in xyz domain without type xyz\username and
password.
Click to expand...

You can't actually trust "certain" users, but must trust the entire
domain and use the permissions to decide who can and cannot
access resources.
 
B

Bob Qin [MSFT]

Hi Sync,

Thanks for your posting here and thanks for Herb's reply.

To create a trusts between two domains, please refer to the following
documents.

816301 How to create an external trust in Windows Server 2003
http://support.microsoft.com/?id=816301

306733 HOW TO: Create a Trust Between a Windows 2000 Domain and a Windows NT
http://support.microsoft.com/?id=306733

In fact, you still need to assign the proper permissions for the resources
in the xyz domain for the abc\user.

Have a nice day!

Regards,
Bob Qin
Product Support Services
Microsoft Corporation

Get Secure! - www.microsoft.com/security

====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Merging Domains 3
Client Domain Switching between organizations? 2
Trust relationship errors URGENT b/n NT 4.0 and Win 2K 3
Setup Trust between 2 domains 1
Creating trusts between W2K3 and W2K ad domains problem 5
Setting a Trust between two Domains 2
Creating a trust between 2 Windows 2000 Domains 4
Second Trust 3

Top