how to hide trusted domain name for end users
Hello,
How to hide trusted domain partner name. Is it possible to hide from here; logon domain name dropdown domain box to 2.partner domain, security permission and network connection
Examples of releated screenshot;
http://www.bugrakeskin.com/trusteddomain.png
http://www.bugrakeskin.com/logonto.png
ThanksBugra Keskin
July 29th, 2010 11:19am
Hi
Here you go….
http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/c99f881e-9f9b-421e-a1ad-2e1a2ee46cb0
ReagrdsRajesh J S
Free Windows Admin Tool Kit Click here and download it now
July 29th, 2010 11:35am
Thanks for answer. But, this solution described here for windows 2000 server. Windows server 2003/2008 can not include %SystemRoot%\System32\Config\Netlogon.ftl file.
Surely there must be a solution :(Bugra Keskin
July 29th, 2010 12:36pm
Hello Bugra,
Please refer to the following articles:
Trusted Domains Do Not Appear in the Available List for Domain Logon or Setting Security Permissions
http://support.microsoft.com/kb/310611
How can I use Group Policy to hide the domain drop down list on the Windows Logon dialog box?
http://www.windowsitpro.com/article/domains2/how-can-i-use-group-policy-to-hide-the-domain-drop-down-list-on-the-windows-logon-dialog-box-.aspx
Brent Hu,Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
July 29th, 2010 12:41pm
Hello, Brent
thanks for answer
But, that the solutions here, the partner trust domain name does not hide.
Both the domain name is hiding.
I want someone to be hidden.
http://www.bugrakeskin.com/trusteddomain.pngBugra Keskin
July 29th, 2010 1:54pm
Hi,
It seems that if you have tried all of the possible answers in the
thread posted by Rajesh,
http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/c99f881e-9f9b-421e-a1ad-2e1a2ee46cb0
then it will not be possible to hide individual logon domains. You can
however hide the domain box using this procedure,
http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/9f607914-9be9-4ecf-85fa-da3d33f79232
-- Mike Burr
Free Windows Admin Tool Kit Click here and download it now
July 29th, 2010 6:13pm
Hi Mike,
thanks for reply
I just want to hide one domain. There are all domains are hidden.
Is this possible ?
thanks
Bugra Keskin
July 30th, 2010 10:12am
Hello Bugra,
You want to achieve are actually two different things. One is hiding the trusted domain name from the logon window; the other is to hiding the trusted domain name from networking browsing. The latter is related to browsing service. Every time a Domain Master
Browser (DMB) reboots, it will send out a "r_WinsGetDbRecsByName" call to its assigned Windows Internet Naming Service (WINS) server to pull all <1B> records in the WINS database. These records represent all other DMBs, which will enable the local DMB
to discover all other domains in the enterprise. To view computers in another domain, the following criteria should be meet:
• The DMB must be able to resolve 1B record for other domains in WINS or a machine belonging to the remote domain must be present on the local subnet in order to be able to see the domain in list of Windows networks.
• The browsing client must be able to connect to remote domain DMB via UDP 137/138.
For more information about domain browsing, please refer to the following Microsoft Knowledge Base article:
150800 Domain Browsing with TCP/IP and LMHOSTS Files
http://support.microsoft.com/default.aspx?scid=kb;EN-US;150800
There is no simple way to hide only one particular domain:
1. If there are computers from another domain is present on the local subnet, the browsing mechanism will enable clients to view the computers in other domains unless you can disable the Browsing service on the computers from another domain.
2. If there are no computers from another domain is present on the local subnet and you are using WINS to achieve multi-domain browsing, the domain will be listed unless the 1B record of the partner domain is not listed on the WINS server. As the partner
domain PDC may automatically register 1B record to WINS server if it is configured, you will need to set the partner domain PDC to not use WINS. This may interfere the network browsing of the partner domain.
Brent Hu,
Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”
Free Windows Admin Tool Kit Click here and download it now
August 2nd, 2010 4:35am
Hi ,
I have one suggestion but havent tested on trusts scenario as above
You can try tweaking the below registry
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
create a dword value as hidden , once done the server will stop sending the announcements.
August 2nd, 2010 10:02am