Name
trust
Synopsis
Create an external trust, create a shortcut trust, or verify a trust.
Procedures
Trusts are managed using the Active Directory Domains and Trusts console, and the following procedures assume that you have this console open.
Create an External Trust
External trusts are one-way trusts in which a trusting domain trusts a trusted domain. You might typically create external trusts between:
A Windows 2000 domain and a legacy Windows NT domain
Two Windows 2000 domains in different forests
Before you create a one-way trust, you need to decide which domain is the trusting domain and which the trusted one. The trusting domain typically contains the shared resources that need to be accessed, while the trusted one contains the user accounts who need to access these resources. Creating a one-way trust involves two steps—one of which is performed on a domain controller in the domain that will be the trusting one, and the other on a domain controller in the domain that will be the trusted one (the order doesn’t matter).
For example, let’s say you want to establish a one-way trust from the root domain of forest A (the trusting domain) and the root domain of forest B (the trusted domain). The steps involved are as follows:
In the domain that will be the trusted one (root domain in forest B):
Right-click on a domain → Properties → Trusts → click bottom Add button → specify DNS name of domain that will be the trusting one (root domain of forest A) → specify a password → OK In the domain that ...
Get Windows 2000 Administration in a Nutshell now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
