|Subject:||Active Directory split|
|Posted by:||Luka Obersnu (LukaObers…@discussions.microsoft.com)|
|Date:||Fri, 7 Nov 2008|
Iâ€™m preparing for AD split for the company that will separate from the main
company. After the split theyâ€™ll have only few servers in new AD (all servers
are W2k3 R2; MS cluster with 2 nodes (file server, print server, SQL, Lotus
Notes, â€¦), AD server, Oracle, â€¦) and about 200 users/computers located on
few, VPN connected, locations round the Europe. We are not allowed to enable
trusts between two domains! We will export/import all users, computers,
printers, security groups, â€¦ from the main domain to new one. We plane to
move computers into new domain location by location. Users will for now have
the same passwords on both sides.
And now the problem. When I try to connect to a share located on our file
server (old domain), from the testing computer that is already in new domain,
Iâ€™m prompted to enter username and password.
Is there a way to work around this prompt without adding all users into
local users container on all our member servers?
Is it possible to configure Windows server 2003 to forward authentication
only with username without domain name?
Or maybe someone has batter idea?