IT Employment

General discussion


Cross Domain Authentication Issues.

By mark.parker ·
We have two windows 2000 AD domains with an established trust. Domain A is running in native mode, and domain B is running in mixed mode.

We have introduced a W2003 server into Domain A, and set the appropriate permissions to allow users from Domain B access to its resources.

We are experiencing issues with the 2003Svr authentication users from Domain B. The authentication works successfully for a number of days, and will then suddenly stop authenticating users from Domain B, and generate security events.

No changes are made to the domain or server configurations, and a reboot of the 2003Svr will generally resolve the issue.(On some occasions it takes more than one reboot)

We have checked the system using netdiag, dcpromo and have found no obvious errors.

Below are some symptons we have noticed:

** We are still able to browse to Domain B from the server and access network shares. Net view commands also work find to any DC in the Domain B.

** When modifying security permissions on the 2003Svr we are able to search and select user accounts from domain B, however once we apply the changes the account details are displayed in numeric format(SID).

** EventID 537
Category: Logon/Logoff
Logon failuer:
Reason: an error occurred during logon
Domain: Domain B
Logon Type: 3
Logon Process: NtLmSsp
Authentication Package: NTLM

Any assistance or thoughts anyone can provide would be grealy appreciated.

Many Thanks

Mark P

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Related Discussions

Related Forums