Can't search for users in another forest from any member servers
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 88%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Sham
1
Reputation point
Hi All
We have forest A that has an outgoing trust with forest B. From the domain controllers - AD users and computers - group - members tab, we can search for users in forest B by changing the location to Forest B. We are prompted for creds for Forest B, once the creds are entered, we can see the users. When we try to add cross forest users to the local administrators group from Computer Management - Local Users and groups -Groups, when we change the location to forest B and search, the search times out. Our networks team have advised that they can't see any traffic being blocked between the member servers and domain controllers and nothing is blocked via the incoming or outgoing NSGs. We have also tried this from a member server in the same vnet and subnet as the DCs and have had the same issue. Any help will be much appreciated.
Forest and Domain Functional level are 2016
DCs and Members servers 2019
outgoing trust to Forest B with Forest wide-authentication
Thanks
Sham
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Client for IT Pros | Networking | Network connectivity and file sharing
Windows for business | Windows Server | User experience | Other
Sign in to answer