Establish a Two-way Active Directory Trust

Sign up to access this lesson

Click here to sign up and get access to this lesson!

Saving Progress...

In this lesson we are going to establish a transitive two-way trust between ad.serveracademy.com and co.serveracademy.com.

In order to establish a trust between the two domains, we need to confirm the following:

  • You can resolve each of the DNS domains from each domain
  • You have network connectivity between the two domains
  • You have domain admin credentials in both domains

Configuring the Active Directory Trust

We are going to configure the AD trust from SADC01 in ad.serveracademy.com. To get started, log in to that server and from Server Manager click Tools > Active Directory Domains and Trusts:

Now right-click the domain and select Properties:

Select the Trusts tab and then click New Trusts…

Now enter the domain name under the Name field. In our case it will be co.serveracademy.com:

On the next page, we are going to select a Forest trust which is a transitive trust:

On the Direction of Trust, select a Two-way trust and click Next.

Since I have domain admin credentials ready for both domains, I am going to chose to create the trust in this domain and the specified domain (co.serveracademy.com). Chose this option then click next:

Now we need to enter the domain credentials for the other domain (co.serveracademy.com). I am going to enter the user accounts FQDN which is administrator@co.serveracademy.com:

Other ways you could enter this user name would be as shown below:

  • administrator@co
  • co\administrator
  • Co.serveracademy.com\administrator

Click Next.

Now decide what type of authentication level you want for the outgoing trust. I want users in the co.serveracademy.com domain to automatically be able to access computers and resources in my ad.serveracademy.com domain, so I am going to chose a forest-wide authentication for both the outgoing and incoming trust authentication levels:

Now we have a summary of the settings we have chosen, you may review them before clicking Next:

The next screen should show a successful creation of the trust:

Sign up to access the rest of this lesson

You must either log in or sign up to access this lesson.

Saving Progress...

0 0 votes
Lesson Rating
Subscribe
Notify of
0 Comments
Inline Feedbacks
View all comments

Active Directory & Identity with Windows Server

0%

0/1 Lessons

Course Introduction

• 2min

0 / 1 lessons complete

Getting Started with Active Directory Domain Services

• 52min

0 / 6 lessons complete

Introduction to Active Directory Users & Computers

• 1hr 24min

0 / 10 lessons complete

Adding a Second Domain Controller

• 1hr 31min

0 / 7 lessons complete

Active Directory Backups

• 1hr 24min

0 / 5 lessons complete

How to Administrate Active Directory with Windows PowerShell

• 1hr 58min

0 / 7 lessons complete

Administrating AD SS (Active Directory Sites and Services)

• 1hr 3min

0 / 5 lessons complete

Active Directory Trusts

• 54min

0 / 5 lessons complete

Modifying the Active Directory Schema

• 43min

0 / 3 lessons complete

Course Conclusion

• 2min

0 / 1 lessons complete