Domain Trust Access Denied
What happens is that intermittently they are not able to log in and get an access denied.
Domain trust access denied. To do this follow these steps. In an attempt to resolve this i have removed the trust between the 2 domains and tried to recreate it but get an access denied error the trust does create on both sides but wont validate. If you have multiple federated domain names you ll have to determine which is your primary accountnamespace. It s the trusting trusted domain and a password for the trust.
Why would access be denied. 1 remove domain domain users ad group from user policy for the web application. It s a long time since i setup a trust relationship but from what i can remember you do not use a user id. Here is what i did to resolve the issue.
Some one way trusts can be either nontransitive or transitive depending on the type of trust being created. I tried with the default domain admin which is usually disabled we don t use the default domain admin account instead we made a copy of it called something non administrative looking then disabled the default admin. As it turns out there were a number of causes for the access denied message i described. Identify your federated domains.
This helped in troubleshooting since no access denied errors occur with this enabled as described in my question. The above problem is basically caused if you have recently changed the domain password and the same is not being used to establish the trust. Thus began the troubleshooting process. Access denied trusting computer for delegation to services sorted ok got this sorted.
So i created the trust on my existing domain even entering the trust password with one finger but when i switch to aws mad not 5 seconds after clicking the add button i would receive an access denied failure notice like the one shown below. However users in the trusting domain cannot access resources in the trusted domain. Setup the trusting domain with the domain of the trusted domain and choose a password the do visa versa using the same password. Are you kidding me.
The other potential problem in setting up trust is wins lmhost services etc.