Share via

How to bring a server into child domain

anil kumar 1,641 Reputation points
2020-09-30T05:29:18.613+00:00

HI,

We have created parent-child domain controllers by adding child DC into forest of parent DC for same testing.

Parent domain: Alwayson.AG.Ad.Local
Child domain: ChildAd
Domain name on ChildDC: ChildAd.Alwayson.AG.Ad.Local

Now we want to bring a machine into child domain - IP address of child domain is added under DNS entry for this machine.

We have tried putting the machine in ChildAD and ChildAD.Alwayson.AG.Ad.Local domain with ChildAD\Administrator, ChildAD.AlwaysOnAG\Administrator and AlwaysOnAG\Administrator users. It keeps giving us different errors.

My ask is what is the proper way to do this ? I am new to Active directory stuff ? What should be mentioned under domain for that machine ? which user to use - admin of child dc or admin of Parent dc or parentdomain.child domain\admin ?

Do we need to establish some kind of trust between child and parent domains ?

Appreciate your insightful response and thank you for your time !!

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,624 questions
0 comments
Accepted answer
  1. Hannah Xiong 6,276 Reputation points
    2020-09-30T09:25:51.297+00:00

    Hello,

    Thank you so much for posting here.

    According to our description, yes, it is the proper way to do this. In my test, I brought a client computer into the child domain, and set IP address of child domain as preferred DNS server and joined this computer to child domain. My parent domain is book.com, and child domain is yt.book.com.

    29384-12.png

    29348-13.png

    After that, we could log in to the child domain controller and check that this computer is showing in the Computer container in AD Users and Computers.

    29230-14.png

    Then we could log in to this computer with yt\Administrator as shown below. According to our description, we could not log in to the computer with credentials, right? What are the error messages when trying with the credentials.?

    29259-15.png

    There is no need to manually establish the trust between child and parent domains since it will be automatically established. To check the trust between child and parent domains, we could follow the steps:

    1, Open AD Domains and Trusts, choose the child domain.

    29386-16.png

    2, Right click child domain and choose "Properties"

    29375-17.png

    3, Check the "Trusts" tab, and we could see that it is two-way transitive parent-child trust.

    29350-18.png

    4, Click the parent domain and then Click the "Properties". Click "Validate" to validate the trust.

    29402-20.png

    5, We could also verify the trust on the parent domain.

    29376-19.png

    For any question, please feel free to contact us.

    Best regards,
    Hannah Xiong

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.