Unable to add a second forest in AAD Connect

stavros mitchell 56 Reputation points
2021-07-26T16:56:53.337+00:00

Hey Everyone I have customer who is trying to add an addition forest to his AD Connect. They do not have a trust set up between the 2 forest and they will not establish one. When setting up ad connect we are getting the following error " The domain specified in the credentials does not exist or cannot be contacted" Any ideas what could be causing the problem?

Thanks for the help

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,798 questions
0 comments No comments
{count} votes

3 answers

Sort by: Most helpful
  1. Andreas Baumgarten 109.9K Reputation points MVP
    2021-07-26T17:03:21.97+00:00

    Hi @stavros mitchell ,

    it's possible to ping the untrusted AD domain (and domain controllers) by name from the server running AD Connect?

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten


  2. Andreas Baumgarten 109.9K Reputation points MVP
    2021-07-26T21:40:53.937+00:00

    Hi @stavros mitchell ,

    all required ports are "allowing communication" between AD Connect and the DC of the untrusted AD?

    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/reference-connect-ports#table-1---azure-ad-connect-and-on-premises-ad

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten


  3. Andreas Baumgarten 109.9K Reputation points MVP
    2021-07-27T14:41:43.317+00:00

    Hi @stavros mitchell ,

    I don't know if your DNS server, used by the AD Connect VM, got the forward lookup zone of the untrusted domain or if you are using conditional DNS forwarding.

    But this would be my check.

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.