none
The trust relationship between the primary domain and the trusted domain failed. RRS feed

  • Question

  • Hi,

    I have a forest trust btw another forest and a trust btw Sharepoint farms.

    I have a Sharepoint 2013 on Server 2012 (domain a)and trust to Sharepoint 2010 on Server 2008 r2.(domain b)

    The trust is for User Profile, and I use UPRE to replicate profile from domain b to domain a. This is working most of the time, but sometimes I get this error "The trust relationship between the primary domain and the trusted domain failed." and I then wehen I try to gow to "managed service application" I get this error "The trust relationship between the primary domain and the trusted domain failed." I can see that that the "user profile service" i hanging, and the only way to fix this is restaring the Sharepoint servers. I get the save error when I use Stop-SPServiceInstance -Identity xx.

    I  tried this,

    "There are 3 possible causes for your issue in my mind:

    • The trust relationship between primary domain was broken.
    • The firewall blocked the connections used for establish trust relationship.
    • Configuration caches was corrupted.

    For number 1, please verify the trust (http://technet.microsoft.com/en-us/library/cc737447.aspx) and try to recreate the trust (http://technet.microsoft.com/en-us/library/cc758857.aspx)

    For number 2, please follow the steps:

    1. If possible, temporarily stop the firewall in both servers to verify whether this is the cause of the issue.
    2. If this the cause of the issue, Open ports 1025 and 1026 used to RPC session for SharePoint. see KB899148 (http://support.microsoft.com/kb/899148) for more information.
    3. If open ports 1025 and 1026 cannot resolve the issue, please use Network Monitor tool to do further troubleshooting.

    For number 3, please follow the steps to refresh the configuration cache.

    1. Open Start > Run and type %allusersprofile% to open all users’ profile folder.
    2. Navigate to Microsoft\SharePoint\Config\[GUID] folder.
    3. You should see a cache.ini file and lots of XML document. Delete all the XML document.
    4. Edit cache.ini, change the number to 1. Save and close it.
    5. Restart Windows SharePoint Services Timer in Services "

     I dit not help.

     pls adv.


    Erró


    • Edited by Erró Wednesday, September 11, 2013 10:11 AM
    Wednesday, September 11, 2013 10:10 AM

Answers

  • Hi,

     firewall is turned off on both servers. I have verified trust and the trust is good. There is a two way forrest trust with Forrest-Wide authentication. Itaken a full UPRE replication btw forrest and it worked fine, but for some reason it stops working btw teh Sharepoint servers. While in error I can brows  Active Directory  on the trusted domain.


    Erró

    • Marked as answer by Erró Friday, November 29, 2013 10:40 AM
    Thursday, September 12, 2013 10:18 AM

All replies

  • Hi,

    Refer to the following article to verify a trust:

    http://technet.microsoft.com/en-us/library/cc737447(WS.10).aspx

    http://technet.microsoft.com/en-us/library/cc758857(WS.10).aspx

    Does the issue still persist when you turn off the firewall on both servers?

    User Profile Service application requires a two-way trust between domains. If there is a one-way trust, configure a two-way trust and see how it works.

    If no help, look for the detailed information from Event Logs and ULS Logs.

    Thanks.


    Tracy Cai
    TechNet Community Support

    Thursday, September 12, 2013 9:58 AM
    Moderator
  • Hi,

     firewall is turned off on both servers. I have verified trust and the trust is good. There is a two way forrest trust with Forrest-Wide authentication. Itaken a full UPRE replication btw forrest and it worked fine, but for some reason it stops working btw teh Sharepoint servers. While in error I can brows  Active Directory  on the trusted domain.


    Erró

    • Marked as answer by Erró Friday, November 29, 2013 10:40 AM
    Thursday, September 12, 2013 10:18 AM