post #1 of 1
Thread Starter 
Here's some story:

We're acquiring a new bank. To make the conversion process easier, we decided we would set up domain trusts, instead of migrating all of their users to our domain. So currently, we have a "Two Way Trust" set up between our domains.

For some reason - Our domain users/computers can open up shares on their network without an issue. Their domain can only open shares located on our Domain Controller, and from our old retired domain controller (that is no longer..we use it for some other things now)

This is the error they get when mapping/opening fails: "There are currently no logon servers available to service the logon request."

This is the error we get when we try to add their users to our machines: "The user could not be added because the following error has occurred: The trust relationship between the primary and the trusted domain failed."

If I remote to their domain, open up command prompt, and do a net view of a share on our domain, I get an access denied error (unless i'm trying to view our domain controll or our old retired domain controller)

Both Domain Controllers are Server 2008. We can ping eachother by name (as long as we include suffix ex. PCNAME.domainname".



At a loss here. Need help asap frown.gif



It almost sounds like a group policy issue. If you do \\machine\ share we get a permission error. Their domain knows its there, and it WANTS to get to it, it's just failing with permission. but if the share has everyone/their domain users/their domain admin listed on share and security.

EDIT:
So we did a trust test on each domain controller.

Domain Controller A (OURS)
nltest /domain_trusts /server:Domain B
Failed: Status 1722 RPC_S_SERVER_UNAVAILABLE

Domain Controller A
nltest /domain_trusts /server:Domain A
Command Completes Successfully / shows trusts

Domain Controller B (OURS)
nltest /domain_trusts /server:Domain B
Failed: Status 1722 RPC_S_SERVER_UNAVAILABLE

Domain Controller B
nltest /domain_trusts /server:Domain A
Command Completes Successfully / shows trusts

Big Edit: (imo)
If we remote to their domain, and map the drive using domain a's credentials it works fine.
Edited by Bakadin - 7/28/11 at 10:34am