Adding admins from a trusted domain
Posted on 2012-03-30
I am having an issue adding an administrator from a trusted domain into the "Built-In Administrators" group.
There are two domains configured with an external one-way trust, Domain A (Server 2008) is trusted into Domain B (Server 2008 R2). I can authenticate with regular user account on a workstation in Domain B using n account from Domain A. I cannot authenticate a user from Domain B into Domain A, which is exactly what we want.
The problem is adding administrators from Domain A into Domain B. I have added an administrator from Domain A into the "Built-In Administrator" group of Domain B. I can log onto the domain controller of Domain B using the Domain A administrator account. However, when I look at the group member ship in Domain B, I get the message it cannot display friendly names and I only see the SID of the Domain A administrator account. I also cannot access any of the administrative tools in Domain B using the Domain A administrator account, such as ADUC.
I have validated the trust successfully and now am somewhat flummoxed. Any suggestions or ideas are greatly appreciated.