Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cannot Access only One Server's resources in 2000 Domain

Status
Not open for further replies.
dcassat

dcassat

MIS
Dec 8, 2003
6
US
Scenario:

We have two Domains.

Domain A is an NT 4.0 PDC domain. A couple of standalone servers in this domain have Windows 2000 server on them.

Domain B is a Windows 2000 AD Domain. It is running in Native mode. A full two-way trust is in place between domains A & B.

All systems in both domains are accessible by people / machines in either domain with a single exception.

Problem:
Servers running NT 4.0 in domain A cannot access one domain controller's resources in Domain B. ie:\\server at start/run yields the error 'Access is Denied.' That same server in Domain B can access any server in Domain A. No other server in either domain have issues. Servers running Windows 2000 in domain A have no issue accessing the same server in domain B.

I have looked at all Domain local permissions on the server in question. I have run nltest and it shows all domain communication is normal. I have spent numerous hours looking for the reason why an NT 4.0 system cannot access resources on a Windows 2000 server in a different domain.

I look forward to all suggestions.



 
Sort by date Sort by votes
Have you checked the logs on the 2000 DC in domain B? Are you seeing group policy successes (event id 1704)?

If not, what errors and warnings do you see? Any errors in the directory service or file replication logs?
 
Upvote 0 Downvote
Unfortunately, I have found no event logs that relate to this connection failure and I have looked at both ends of the connection several times to generate something that would help. Thus far, I've found no flippin clues!

Dan
 
Upvote 0 Downvote
This may be an issue because you are running in native mode instead of mixed mode.

You must enable auditing so you can catch the events you want to see. Go into DC Security Policy, security settings,
Local Policies,Audit policy, audit account logon events...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

goombawaho
  • Locked
  • Question
Domain join from wifi connected laptop
Replies
4
Views
600
goombawaho
goombawaho
ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
762
gbaughma
gbaughma
Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
418
Aquiles Vidal
Aquiles Vidal
MattM1975
  • Locked
  • Question
Domain Admin Logon 1
Replies
2
Views
190
ADB100
ADB100
tscstl
  • Locked
  • Question
access to local folder
Replies
1
Views
194
hairlessupportmonkey
hairlessupportmonkey

Part and Inventory Search

Sponsor

Back
Top