|
Posted by Roger Abell [MVP] on July 18, 2006, 2:06 pm
If you were Registered and logged in, you could reply and use other advanced thread options
You need to be more specific.
These are apparently in two separate forests, but what kind of trust is
defined ? Just a downlevel NT4 era one-way, which seems to be what
you have described.
Also, what kind of access is being attempted? IE browser to something,
\unc\path to some share, custom application, etc. etc.
The two domains apparently share a means for mutual name resolution
for both DNS and WINS.
It almost sounds as if the attempt via FQDN, which would expect to
use Kerberos does not "shift" to attempting pass-through like authN
with NTLM after it finds Kerberos fails on the downlevel trust.
>I hope I am posting to the correct group -> appologies if not.
>
> I have two AD domains, Domain A and Domain B with Domain B trusting Domain
> A. When a server in Domain B is referenced by FQDN from a system in Domain
> A,
> it prompts for a username, password and domain. If the server in Domain B
> is
> referenced by NetBios name, the authentication is seamless. Users in
> Domain A
> are part of a group in Domain B that has the necessary permissions setup
> on
> the resource they are trying to access.
>
> Any ideas why? Anyone know where I can find some documentation on this
> issue?
>
> Thanks in advance.
| 
XML site map