Win 2003 Active Directory Trusts

**DaveB** · 13 August 2008, 09:18

From memory RPC Unavailable errors are generally cause by a DNS failure - one or the other machine cannot lookup the other in DNS. Failing that check firewalls, RPC Permissions, DCOM Permissions etc.

**Dante** · 13 August 2008, 09:35

Agree with previous poster - more than likely DNS.

Check the DC event logs on both DC's - the clue will be in there!

Alo whathappn if you create a one-way incoming trust on one domain and a one way outgoing on the other domain? Does this hold? What about the other way round? This could point youat permissions.

Also - the account that you are using to create and validate the trust - is this locking out? Are you using this account for anything else (services etc?)

Cheers.

**DanTheMan** · 13 August 2008, 10:56

I'm working my way through a MS checklist and looking into the DNS issues. I think the problem is there tbh.

I'm actually using an administrative account to create the trusts. It's used often to log onto the boxes. Perhaps a dedicated account is needed...?

Thanks

**spoons** · 13 August 2008, 12:11

Are there any firewalls between them?

I would check that both forwards and reverse entries are resolvable via DNS.

The account should not be an issue as this not used after the trust has been established.

**DanTheMan** · 14 August 2008, 10:38

Sorted it, thanks.

I needed to set up secondary zone files on each server and then allow the originating zones to be shared.

Simple really.....

Win 2003 Active Directory Trusts