Can't search for users in another forest from any member servers

Sham 1 Reputation point
2021-08-18T22:20:13.5+00:00

Hi All

We have forest A that has an outgoing trust with forest B. From the domain controllers - AD users and computers - group - members tab, we can search for users in forest B by changing the location to Forest B. We are prompted for creds for Forest B, once the creds are entered, we can see the users. When we try to add cross forest users to the local administrators group from Computer Management - Local Users and groups -Groups, when we change the location to forest B and search, the search times out. Our networks team have advised that they can't see any traffic being blocked between the member servers and domain controllers and nothing is blocked via the incoming or outgoing NSGs. We have also tried this from a member server in the same vnet and subnet as the DCs and have had the same issue. Any help will be much appreciated.

Forest and Domain Functional level are 2016
DCs and Members servers 2019
outgoing trust to Forest B with Forest wide-authentication

Thanks
Sham

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,398 questions
Windows Server 2016
Windows Server 2016
A Microsoft server operating system that supports enterprise-level management updated to data storage.
2,347 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,930 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,724 questions
Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,020 questions
0 comments No comments
{count} votes