G
Guest
Guest
Archived from groups: microsoft.public.windowsnt.domain (More info?)
Hello
I'm hoping someone might be able to point me in the right direction...
I have two Windows NT 4.0 SP6 domains.
I have created a one-way trust between them. DomainA trusts DomainB.
The Administrator of DomainB has created a Global Group containing the users
who need access to a share in DomainA.
I have created a Domain Local Group in DomainA that contains the Global
Group from DomainB.
I have assigned Change permissions to a share on DomainA's PDC at both the
share and NTFS levels to the DomainA Local Group.
When a member of the DomainB Global Group tries to access the share in
DomainA from DomainB's PDC they get an 'Access Denied' message.
If they type \\DomainA-PDC they are able to list the shares, but cannot go
into any of them.
They are able to map to the share using a DomainA user account which rules
out connectivity problems.
LMHOSTS files are being used for name resolution. There are entries for all
the DCs as well as 1b and 1c entries.
The trust looks like it's ok, as all the LSA secrets and passwords are in
the registries of the DCs.
I have no idea why we're getting the 'Access Denied' error. I'm starting to
think I've missed something really obvious!
Any help would be greatly appreciated!
Thanks,
Lisa
Hello
I'm hoping someone might be able to point me in the right direction...
I have two Windows NT 4.0 SP6 domains.
I have created a one-way trust between them. DomainA trusts DomainB.
The Administrator of DomainB has created a Global Group containing the users
who need access to a share in DomainA.
I have created a Domain Local Group in DomainA that contains the Global
Group from DomainB.
I have assigned Change permissions to a share on DomainA's PDC at both the
share and NTFS levels to the DomainA Local Group.
When a member of the DomainB Global Group tries to access the share in
DomainA from DomainB's PDC they get an 'Access Denied' message.
If they type \\DomainA-PDC they are able to list the shares, but cannot go
into any of them.
They are able to map to the share using a DomainA user account which rules
out connectivity problems.
LMHOSTS files are being used for name resolution. There are entries for all
the DCs as well as 1b and 1c entries.
The trust looks like it's ok, as all the LSA secrets and passwords are in
the registries of the DCs.
I have no idea why we're getting the 'Access Denied' error. I'm starting to
think I've missed something really obvious!
Any help would be greatly appreciated!
Thanks,
Lisa