Blocked LDAP between terminal server and domain controller

[Rustam]

I have Windows 2003 R2 server with Terminal Services joined to one of AD
domains of my company (Domain1). This domain has trusts with other domain
(Domain2). There is a firewall between hosts in Domain1 and Domain2 so hosts
from Domain1, my terminal server in particular, have no LDAP access to
Domain2 domain controllers.

When user from Domain2 tries to login to the terminal server he gets a
message "The system cannot log you on due to the following error: The
specified domain either does not exist or could not be contacted". Does this
mean that there is no way Domain2 users could login to my terminal server
while LDAP is blocked between this server and Domain2 ?

Thanks in advance.

 

[Rob Leitman [MSFT]]

"Rustam" wrote in message
news:CCC2B4FC-BEBF-4215-B20F-4FDCED1065A1@microsoft.com...
> I have Windows 2003 R2 server with Terminal Services joined to one of AD
> domains of my company (Domain1). This domain has trusts with other domain
> (Domain2). There is a firewall between hosts in Domain1 and Domain2 so
> hosts
> from Domain1, my terminal server in particular, have no LDAP access to
> Domain2 domain controllers.
>
> When user from Domain2 tries to login to the terminal server he gets a
> message "The system cannot log you on due to the following error: The
> specified domain either does not exist or could not be contacted". Does
> this
> mean that there is no way Domain2 users could login to my terminal server
> while LDAP is blocked between this server and Domain2 ?

LDAP is the protocol using to talk to domain controllers, so I don't see any
way for the trust to work.

Rob