Unable to Establish an Explicit Trust Between Windows 2000-Based Domains (312003)

SYMPTOMS

When you attempt to establish an explicit trust between two Windows 2000-based domains that are in different forests, you may receive the following error message:

The DomainName domain cannot be contacted. If this domain is a Windows domain, the trust cannot be set up until the domain is contacted. Click Cancel and try again later. If this is an interoperable non-Windows Kerberos realm and you want to set up this side of the trust, click OK.

RESOLUTION

To resolve this issue, make sure that Windows Internet Name Service (WINS), Domain Name System (DNS), or the LMHOSTS file is configured correctly to locate the PDC, and that TCP/IP is configured correctly on all of the domain controllers that are involved.

MORE INFORMATION

For additional information about DNS, click the article numbers below to view the articles in the Microsoft Knowledge Base:

291382 Frequently Asked Questions About Windows 2000 DNS

237675 Setting Up the Domain Name System for Active Directory

For additional information about the LMHOSTS file, click the article numbers below to view the articles in the Microsoft Knowledge Base:

101927 The Lmhosts File for TCP/IP in Windows

180094 How to Write an LMHOSTS File for Domain Validation

For more information about WINS, type WINS on the Search tab in Windows 2000 Help, and then click the appropriate topic.

For more information about configuring TCP/IP, type TCP/IP on the Search tab in Windows 2000 Help, click Configure TCP/IP, and then click the appropriate topic.

Unable to Establish an Explicit Trust Between Windows 2000-Based Domains (312003)

SYMPTOMS

CAUSE

RESOLUTION

MORE INFORMATION