RE: Trusts between two domains

• From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Mon, 2 May 2005 21:54:38 -0700

ISA 2004 SE or EE?
If SE, you should get Service Pack 1.

You may have to either:
1 - Disable "Strict RPC" in the ISA RPC Filter 
2. Disable the RPC Filter altogether

-----Original Message-----
From: Rob Moore [mailto:RMoore@xxxxxxxx] 
Sent: Monday, May 02, 2005 10:12 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] Trusts between two domains

http://www.ISAserver.org


Hello all-- 

I recently set up a two way trust between my main domain and a colocated
domain. The trust is in place but it's not working fully correctly. When
I originally set up the trust, the two domains were on the same physical
network and I could choose users from one domain and give them rights on
resources on the other domain. Now, though, the domains are physically
separate. I have a VPN going between ISA2004 servers at both sites, and
(for now) I'm allowing all traffic to pass between the two sites. But I
can no longer choose users and groups from the other domain. I get a
message that the object can't be found. If I try to validate the trust,
I get a message that no logon server can be found in the remote domain. 

I seem to recall that there may be some special rules I need to create
to pass Domain Controller traffic between my ISA servers. Is that right?
Any hints that might help me get this working?

Thanks, 
Rob 

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= 
Rob Moore 
Network Manager 
215-241-7870 
American Friends Service Committee 
1501 Cherry St. 
Philadelphia, PA  19102 
RMoore@xxxxxxxx 
Phone: 215-241-7870 
Fax: 215-241-7204 

Love is the only rational act. 
                       --Morrie Schwartz 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx 

All mail to and from this domain is GFI-scanned.

Other related posts:

• » Trusts between two domains
• » RE: Trusts between two domains
• » RE: Trusts between two domains
• » RE: Trusts between two domains
• » RE: Trusts between two domains

1. Home
2. isalist
3. Archive
4. 05-2005

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---