Friday, September 29, 2006

MS: You Can't Access The User List In A Trust with error 'The Server Is Not Operational'

When you create a external trust between Windows 2000 and/or Windows 2003, you can't access the user list with error "The Server Is Not Operational"
This condition will happen if there are no SRV records in DNS on the the trusting domain for the DCs in the trusted domain. To fix this condition:

1. Open the DNS snap-in in the trusting domain.
2. Expand the server.
3. Right-click Forward Lookup Zones and press New Zone.
4. Press Next.
5. Press Standard secondary and then press Next.
6. Type the trusted domain name and press Next.
7. Create a new file named Domain.dns and press Next.
8. Press Finish.
9. Open the DNS snap-in in the trusted domain.
10. Expand the server.
11. Select the Properties of the trusted domain's forward lookup zone. Select the Zone Transfers tab.
12. Check the Allow zone transfers box.
13. Select Only to the following servers and type the IP address of the trusting domains DNS server.
14. Press OK.
15. On the DNS server in the trusting domain, open the DNS snap-in.
16. Expand the server.
17. Expand the Forward Lookup Zones.
18. Right-click the secondary zone and press Transfer from master.

No comments: