Which firewall ports do I need to open in order for a domain trust to work?

Posted by Massimo on Server Fault See other posts from Server Fault or by Massimo
Published on 2012-10-08T12:46:00Z Indexed on 2012/10/08 15:40 UTC
Read the original article Hit count: 238

I have two Active Directory domains in two different forests; each domain has two DCs (all of them Windows Server 2008 R2). The domains are also in different networks, with a firewall connecting them.

I need to create a two-way forest trust between the two domains and forest.

How do I configure the firewall to allow this?

I found this article, but it doesn't explain very clearly which traffic is required between DCs, and which traffic (if any) in needed instead between domain computers in one domain and DCs for the other one.

I'm allowed to permit all traffic between the DCs, but allowing computers in one network to access DCs in the other one would be a little more difficult.

© Server Fault or respective owner

Related posts about active-directory

Related posts about windows-server-2008-r2