No Prob. On both the domains, I turned off all digital signing and enrcypting that can be found under Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options. I also set LAN Manager Authentication level to LM & NTLM only I also set restrict anonymous access to Named Pipes and shares to disabled I set LDAP Signing requirements to none I set allow anonymous SID/Name translation to enabled I set Require strong (Windows 2000 or later) session key to disabled I also had to map a network drive with appropriate credentials to the destination DC.
-----Original Message----- From: Rocky Habeeb [mailto:[EMAIL PROTECTED] Sent: 29 November 2005 13:39 To: Smith, Brad Subject: Your Trust creation process Dear Brad, You wrote: "Got it. I dumbed down all the signing, encrypting and NTLM prerequisites (ie, LM and NTLM, not NTLM2) and it worked." and, "and it only seems to work with a net use connection to C$ in place at the same time." Could you please tell me what you did and the steps you took in the "dumbing down" section? Thanks in advance. RH _____________________________ Rocky Habeeb Microsoft Systems Administrator James W. Sewall Company Old Town, Maine Voice: 207.827.4456 Ext. 387 Email: [EMAIL PROTECTED] www.jws.com _____________________________ This message has been scanned for viruses by MailControl - (see http://bluepages.wsatkins.co.uk/?4318150) This email and any attached files are confidential and copyright protected. If you are not the addressee, any dissemination of this communication is strictly prohibited. Unless otherwise expressly agreed in writing, nothing stated in this communication shall be legally binding. List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/