Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [trust-relationship]

88 questions
0
votes
0 answers

Deleting two-way trusts in Windows AD

I want to remove two-way trust using netdom trust command on Windows Server 2012 r2, I am using "Run as Administrator" command prompt but still getting "Access Denied" Here is my command netdom trust testrelm.test /d:testrelm.test /remove…
Abhijeet Kasurde
  • 983
  • 9
  • 20
0
votes
2 answers

validate domain trust command, netdom trust /verify doesn't work

I have an external trust with my Active Directory domain. I want to validate the trust from a command so that I can do it remotely and don't have to open Remote Desktop and navigate to the AD domains and trusts console. I have read that netdom trust…
Roman
  • 405
  • 1
  • 7
  • 21
0
votes
1 answer

Not able to "Run As" any application on a server in the TRUSTING domain using an account from the TRUSTED domain

There are two domains: "dom1" and "dom2". "dom1" is the trusting domain. "dom2" is the trusted domain. I.e. there is a one way trust where domain "dom1" trusts domain "dom2". Servers joined to domain "dom2" and logged in with an account in the…
slayernoah
  • 1,650
  • 2
  • 13
  • 19
0
votes
0 answers

Which domain trusts to reset during forest recovery? Incoming, outgoing or both?

I understand the difference between an outgoing and an incoming trust I understand that the trust flow goes into one direction and the direction of access is the other way around I understand that being the domain with an incoming trust, we are…
David Trevor
  • 205
  • 1
  • 12
0
votes
2 answers

Network share with an untrusted domain

We have a network share on a Windows Server 2022 which hosts a number of both "production" files as well as development files. We have two domains - a prod domain (ex. "prod.local") and a dev domain ("dev.local"). Some folders have been set up with…
MBender
  • 381
  • 2
  • 8
  • 25
0
votes
1 answer

How does bind account work in subdomains in AD

We have a parent domain and multiple subdomains. We created a bind account under parent domain to read users and groups from all the subdomains. How does the account created under parent domain authenticate itself to the subdomains? Is it via…
Dran
  • 1
  • 1
0
votes
0 answers

Establish Trust Between Two Active Directory Domains with a Common Root

In my lab environment, I'd like to create a trust relation between two Active Directory domains that share a common root. One is home.acme.com and the other is work.acme.com. When I create both domains as separate forests and then use the AD Trust…
Christopher King
  • 111
  • 3
0
votes
0 answers

Users from a trusted domain cannot connect to remote desktop gateway

Trying since few days to have an RDP gateway allowing users from a tusted domain to connect to. The only error I can find in the error log is : The user "DOMAIN\login", on client computer "172.22.2.125", did not meet connection authorization policy…
KAMI
  • 1
0
votes
1 answer

Trouble setting up CES and CEP PKI in a trusted forest scenario

I have two AD domains with a two-way forest trust. I want computer accounts in DomainB to enroll for computer client auth certificates from the two-tier Windows CA in DomainA. I configured a certificate cert template in the issuing CA for this and…
corndog
  • 1
0
votes
1 answer

Setting up a trust to an AD environment with DCs on premise and in Azure, how can I limit AD traffic to only the on-premise DCs?

We are setting up a trust between a stand-alone on-premise domain (DMZ from now on) and a corporate domain which is AD/AAD (synched) (CORP from now on) so that users from CORP can log into servers joined to DMZ. To be clear, they're on separate…
R C
  • 3
  • 2
0
votes
1 answer

How can I set the 'The other domain supports Kerberos AES Encryption' setting programmatically?

In the GUI (Active Directory Domains and Trusts MMC Snap-in (domain.msc)), you can set the "The other domain supports Kerberos AES Encryption" setting for a trust relationship: I am looking for a way to set this setting programmatically. I already…
stackprotector
  • 596
  • 1
  • 8
  • 27
0
votes
1 answer

Ubuntu 21.10 with Samba AD unable to create domain trust account

I am trying to add domain trust account for additional kerberos5 (MIT) domain in Samba AD DC with command: net rpc trustdom add -UAdministrator% What happens is that the account is created into Samba ldap…
Sami Hulkko
  • 1
  • 1
0
votes
0 answers

Application Requires Cross Domain Authentication - No trust

I've an application that going forward is going to require cross domain authentication using an AD service account across 2 separate organisations - for example domain A application needs to authenticate with domain B backend. Does anyone know of a…
user948548
  • 1
0
votes
1 answer

Ubuntu login fails with a user of a trusted IDM domain (AD)

We have an IDM Server on a Rocky Linux distro configured with a Trust to a Samba AD DC (also installed on a Rocky Linux). So we created a user 'usupru2' on Samba AD DC under adtest.uy domain. Then we enroll an Ubuntu 20.04 client to IDM and when we…
Mateo
  • 11
  • 4
0
votes
1 answer

Switched BizTalk's database domain, but cannot remove DC

I've inherited an older system involving BizTalk (Server 2010) where the application and its database were on separate servers on separate domains. There has been efforts to modernize the systems and applications, and I had to roll with it when the…
Temm
  • 1
  • 1
1 2 3 4
5
6