|issue with browsing network resource|
I have a problem I'm trying to understand...
I have a Windows Server 2008 running as my AD Server/Domain Controller and Print Server. Workstations (Win7 and XP) on my domain can access printers and shares without any issues.
There are workstations (XP) on a different AD server/Domain Controller I don't have control over. Though these workstations are in the same building as the workstations that are on my domain, they are on different networks/subnets. In other words, my print server and workstations are on the same subnet. The workstations I don't have control over are on a different subnet but can obviously share network resources like network drives by going through the map network wizard and entering the right domain credentials to authenticate.
Hope everything I've described above is clear enough. Recently, a request came in to install printers on my print server to the workstations I have no control over. Now mind you, these workstations in question are on a domain I have no rights to.
When I try to install one of my printers using a script or batch file, I get an error message stating that there's a group policy preventing me from adding the printer. When I tried manually by using the add a printer wizard, it get's to the username and password then complains that there's a group policy preventing me from adding the printer. That's understandably since I think these workstations might have a gpo preventing outsiders so to speak to add printers from a different network/subnet.
This is the really confusing part. One of my users recently discovered that they can browse to my print server by doing: \\servername and in there are all the printers. They can right click on a printer and connect to the printer without any problems. Since the workstation is on a different domain, I expected him to get a login prompt to authenticate but he didn't. So then I went around to about 10 different workstations and try to browse to the server doing exactly what my user did and it was a hit or miss. Out of the 10 workstations, about 6 were able to browse and install the printers without authenticating. The other 4 would get the authentication prompt. I type in username/password and it shows the shares and printers; from there the printer can be added as well. Only problem is that when the users reboots their workstations the printer cannot be accessed since it complains that "access denied". Workstations that were able to add the printers without authenticating are fine after they reboot.
My question is why are some users able to do this without authenticating and other not? And is it possible to keep the credentials cached so that it doesn't get cleared out after a reboot. Yes, I check the box to remember the password but it doesn't get remembered.
Thanks in advance.