security group in a security group

I seem to not be able to create a security group global.  then create another security group global and make the previous security group a member of this one.  What is proper way to nest these items?
LVL 1
techbnjcompAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Jay_Jay70Connect With a Mentor Commented:
with a multi domain setup like that you should create universal groups and nest these
0
 
Jay_Jay70Commented:
use universal groups for nesting
0
 
Jay_Jay70Commented:
also make sure that your domain is in native mode for group nesting be available
0
[Webinar] Kill tickets & tabs using PowerShell

Are you tired of cycling through the same browser tabs everyday to close the same repetitive tickets? In this webinar JumpCloud will show how you can leverage RESTful APIs to build your own PowerShell modules to kill tickets & tabs using the PowerShell command Invoke-RestMethod.

 
techbnjcompAuthor Commented:
I have some users that are in another forest and domain.  We have a two way transitive trust setup between us.  I need to allow these users to access my sharepoint server.  So my question comes in that I need (or think I want) to put these users in a security group.    Then so they need acess to sharepoint I can make that security group  a member of the domain users group and they should have access.  I am in native mode
0
 
techbnjcompAuthor Commented:
Can't convert to a "universal group" as the system says "The following Active Directory error occurred:  Foreign security principals cannot be members of universal groups."

So I tried to create a universal group but then it does not let me add users from other domain/forest.
0
 
Netman66Commented:
You should be able to add the Global Group from the other domain either in the local group where the resource resides or directly on the object.

0
 
Jay_Jay70Commented:
what was the issue of not being able to do what you wanted? could just not see the group or was it erroring? probably should have asked that first ha!
0
 
Netman66Commented:
I think he was trying to nest a Global Group from one domain inside a Global Group from the other.  It's not possible.

You can only nest GG's from the same domain.

0
 
techbnjcompAuthor Commented:
So is grouping even an answer here?  how do I give rights to some users on another domain/forest to use my sharepoint?  I started with groups as i have a trust with other domain/forest.  I was wanting to add them to a group .  then add that group to my domain users which would give them permission.  Thus my original questikon of how to add a group to another group.  Can this be done with groups or what is answer?
0
 
Netman66Connect With a Mentor Commented:
Yes.  

Create a local group on the Sharepoint server.  Give the local group the permissions.  Add the Global group from the other domain to it.
0
All Courses

From novice to tech pro — start learning today.