Share via

Add users with same SAM from other forest to existing AD group

Patry Slagboom 21 Reputation points
2021-03-18T07:31:08.55+00:00

We have 2 forests with AD sync between them. Now i want user from Forest B to have access to the local ad group they are member of with their forest A account.

So Forest_A\Jane_Doe is member of Forest_A\group_A. How can i read members from ForestA\group_A and copy the same usernames from Forest_B into Forest_A\group_A

Resulting in:
Forest_A\Jane_Doe is member of Forest_A\group_A and also Forest_B\Jane_Doe is member of Forest_A\group_A

Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
5,628 questions
0 comments
Accepted answer
  1. Jasreet Singh 176 Reputation points
    2021-03-18T07:45:39.743+00:00

    You can create a Trust between two Domains, if they belong to different forest and access the objects post successful trust implementation.

    You can test the same by searching a User from Domain B by accessing ADUC from Domain A.

    Also the result you require can be implemented.

    You can proceed with below link or can google out for how to setup 2 way transitive trust between domains.

    Sample Site :
    https://www.oreilly.com/library/view/active-directory-cookbook/0596004648/ch02s18.html

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.