.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

After applying SP2 to WSS 3.0 environment, can not add users from a trusted domain

Posted By:      Posted Date: October 14, 2010    Points: 0   Category :SharePoint

We have a WSS 3.0 environment on our DMZ We have a one way trust between our internal domain TT and external domain clients. So we were always able to add internal domain users to our SharePoint sites using TT\loginName

Yesteday we applied SP2 for WSS3 and this functionality stopped working. When we try to add any new TT users to the site collection, I get an error "No Exact Match was found." But the current TT users are able to get in to the site and work fine.

I searched on internet and found that I need to run stsadm coomands for the peoplepicker to work with trusted domains.

So we rebuilt the trust between domains. Then I ran following commands on the SharePoint frontend server:

stsadm.exe -o setapppassword –password somekey

stsadm.exe –o setproperty –pn peoplepicker-searchadforests –pv domain:tt.local,ADUser,passwordforADuser




View Complete Post

More Related Resource Links

Not able to add all users from other trusted Domain to site collection


The environment consists of a one-way trust relationship, I have no problems adding users from the local domain, however I can only add a few select users from the domain that the trust is setup for. This appears to be the case for only one site collection, as a previous site collection can authenticate to and add users from this other trusted domain. 

I have checked the following article in order to authenticate objects in the other trusted domain, but it appears to have not helped.


What steps should I verify so that I can add users to given stie collections?

Applying SQL 2008 SP1 CU 2 in MOSS environment


Hi all,

I have a dedicated SQL 2008 x64 std edtion with SP1  for MOSS 2007 SP2, I would like to apply the CU2 for activating the lock memory page feature, I would like to know if there any incidence on the sharepoint farm after applying this CU on my SQL server?

Thank you for your feedback about that.




Limit MOSS users to specific domain only

Hi guys, I need to set MOSS portal so it will be available to one particular domain user only. I turned anonymous authentication off and delete all items from  Visitors group except  <my domain name>\domain users . I supposed it had to make the trick but still users from trusted domains could login on portal. Am I missing something?

People Picker gets error when selecting user from a trusted domain(one way forest trust)

  Hello all,   Our current setup is SharePoint 2010 Foundation server in one external forest(Trusting forest), and trying to have users in a separate internal forest(Trusted forest) access the site. The external forest's DC and SharePoint server are in a DMZ separated by a firewall with the internal forest's DC and users. A one way transitive forest trust was successfully created and has been validated. On SharePoint, we're ran the sts commands to set the setapppassword as well as the peoplepicker-searchadforests adding the domain that the SharePoint server is in, as well as the trusted forest. An iisreset was issued after running these commands. In SharePoint, we can then search for users from the trusted domain, and select the users in the Select People page, but when hitting the final Ok, an error is received: An unexpected error has occurred in which a correlation ID is provided. Reviewing the SharePoint logs we find the following: <!-- /* Font Definitions */ @font-face {font-family:Calibri; panose-1:2 15 5 2 2 2 4 3 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:-520092929 1073786111 9 0 415 0;} @font-face {font-family:Tahoma; panose-1:2 11 6 4 3 5 4 4 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:-520081665 -1073717157 41 0 66047 0;} /* Style Defin

Setup Users to change domain passwords via sharepoint

Is there no way to nativally setup users to change their domain password or to notify them that the password will expire? The only way is to code a web site, is this a feature for a newer verson?  

Alerts are not relayed to trusted Domain


Dear Experts

I have sharepoint hosted in our office. our branch have trust and some users have access on Sharepoint the domains are in trust. when we set the alerts from our internal domain we get the emails for the CREATE / UPDATE

but my branch office does not get the ALERTS in email

We get following


The user or users have been added successfully, but there was an error in sending the e-mail message. The server may not be set up correctly to send e-mail. To verify that e-mail is configured correctly, contact your server administrator.


Correlation ID: 1c0a1510-7366-4f03-aa14-d9496f1a744d

Date and Time: 21/09/2010 13:10:55

Can you suggest a solution for same


MOSS 2007 can only grant permissions to users in the local domain...


Greetings all,

Where ever I go and attempt to add a user to a group or to grant permissions to a user I am never able to select users from other domains.  The only users I can select are users in the domain where MOSS 2007 was installed.  Is there a setting in MOSS that I need to change to be able to add users from other domains to groups in SharePoint?

Thanks for any and all insights.


LDAP Domain Users Access denied Error


I have a MOSS 2007 test server setup and have configured Forms Based Authentication on Internet site (just an extension of the main portal site) that authenticates via an LDAP Active Directory server. Most of it works. I can import profiles from the LDAP provider and LDAP users can authenticate to the FBA URL.

The problem I'm running into is with LDAP groups and the Role provider. If I add an LDAP users to a Sharepoint permissions group directly, he can log in and access the site with no problems. However, if I instead add a Group from LDAP (which People Picker finds just fine) then members of that group can authenticate, but get the "Access Denied" page for the portal.

Error Access Denied

Current User
You are currently signed in as:  esmu


The relevant portions of my web.config (I have entered these into the web.config for the main portal site, the extended site for forms based authentication, and the Central Management server site (making the required change for the default role provider for the central management site): i follow these steps:

Moving SharePoint Database to non trusted domain SQL server



We have SharePoint and SQL server in a extranet domain. We would like move the SQL server databases for SharePoint to our corporate SQL server (on the corporate domain). 

The Corporate domain does not trust the extranet domain, and thus the web farm account cannnot be specified on the corportare SQL instance. If it possible to migrate the databases to a non tusted domain?

I've seen the script to create a new Config database using SQL authentication

psconfig -cmd configdb -create -server <SQL server name> -database <database name> -dbuser <SQL account> -dbpassword <SQL password> -user <AD user account> -password <AD user password>

Can I edit the config of SharePoint to point to the new SQL server, or do I need to create the entire sharepoint enviromnent again and attach the content databases?

I also have a SSP database that's heavily customised for searcvhing and the BDC. Will this need recreating again or can I move the BDC database  to the new server and attach?


Search working for only select users in same domain


I have encountered an issue where one user is able to conduct a search and retrive a full list of results but another user in the same domain and same membership group recieves no results at all.  Our environment is complex with several domains each trusting one another.  The SharePoint build is as follows:


2 Front End Servers with Loadbalance, 1 Application Server, 1 Index Server


So far I have tested with a user that cannot get results from a terminal client, desktop cleint and VPN remote access in all cases the user is unable to return results.   This user has accounts in 2 domains and when selecting to log on as a different user in the other domain results are returned.  I beleived then that it had to be an account issue in the other domain.  However when I worked with another user who also has accounts in both domains that user was not able to return results with either account.  So I am not sure it is domain account related.


I setup a dev box in the domain and made it bare bones with no load balancer, however when I add the user account who was having issue and a search is run no results are returned. 


The search database appears fine and healty and data is populating the tables

Granting external non-domain users SharePoint 2007 access?

Hello all,

As you can well surmise, I've installed SharePoint 2007 on a server and require assistance. We have two sites. The primary site is for internal use only and the other site, a sub-site, is for communications and collaboration with select colleague organizations who are not members of our domain. How can I add these users to allow them access to this sub-site without giving them user accounts in our domain?

What I have done so far is enable SSO and add our users to have rights on the root site. That all works. I then created the sub-site. As a test from a thread I found, I added my GMail account username as a local user account on the SharePoint server. This did, indeed, allow me to add that user and give him rights to login, but I discovered that there is no way to modify the user's profile and, thusly, cannot specify an email address. What good is SharePoint is you can't get email notifications from it?

It then occured to me to create a new user group in the DC and create accounts for them there while at the same time limiting their access to only the SharePoint server and not have any local or remote login rights. Interestingly, the accounts will login after three tries, and then shows blank pages.

Anyway, what I need is to get these users in, have enough profile information that they can receive email from the server as neede

How to store domain users in SSAS


Hi Experts,

I have a requirement where I need to implement security on some dimensions and measures such that it is visible to a set of users and not accessible to another set of users. Now, I want to store the set of users who is accessing the dimensions and measures which are accessible by both the set of users in separate table.

Pls help me.


How does cross domain users (in the same forest) get authenticated/ authorized in MOSS 2007 ?


How does cross domain users (in the same forest) get authenticated/ authorized in MOSS 2007 site (Windows Authentication).
Is it possible? If yes, then how? and if no then appreciate any workaround.



Authenticate from a windows app to sql on a non-trusted domain?



We have a client application that will run in Domain1 (user logs in as Domain1\User1) and they need to connect to SQL as Domain2/User2.   Domain 1 and 2 don't have a trust relatonship.

Is there a way to pass through the domain2/user2 credentials from the client app to the sql server so sql server will authenticate correctly?



How Do I authenticate users from different domain of IIS?


I have the IIS webserver on Domain A.  I have many users on Domain B, C, D, E. 

I've set the NTFS security permission for each user and his/her domain to the webserver's security ntfs permission folder.  But it is still not authenticating.  So what do  I need to do to enable this feature?  I am using windows 2003 webserver.


Users display as "domain\username" rather than "firstname lastname"


Hi All,

     In my new 2010 setup, I see domain\username instead of their firstname lastname in the top-right-hand corner. How and where can I set up to show firstname lastname. I apprciate your response.



My Sharepoint Foundation People Picker can not pick domain users, please help me?


I'm working in a virtual enrovonment with the following virtual machines

Server 2008 R2 - DC
Server 2008 R2 - Sharepoint Foundation / SQLE

My goal is to work/play with SPF in order to understand its potential use for some of my clients, however I cannot get SPF to recognize any of my domain users in order to grant them access to the Sharepoint site. SPF complete install, new farm, new SQL database etc... I got the hotfixes which did not address my issue. Everything that I have read about this makes it sound like my SPF should easily pick domain users from AD with ease, and that makes this even more frustrating.


Thank in advance.


ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend