Configure people picker to list users from a specific OU in another forest

I have a SharePoint server 2010 in forest A, domain1.local and the users is in forest B, domain2.local. There is a two-way trust between forest A and forest B. I want to restrict the people picker only to list users from a specific OU in forest B, domain2.local. I am able to restrict the listing of users to an OU within the same domain using the following command:

stsadm.exe -o setsiteuseraccountdirectorypath -url <url> -path "<path>"

However, I have not figured out how to restrict it to an OU in the other forest and domain. Any clarification on how to resolve this issue is appreciated.
SupportcomitaAsked:
Who is Participating?
 
Justin SmithSr. System EngineerCommented:
I've done some testing in my multi-forest environment this morning.  I do not think, as the documentation on TechNet says, that it's possible to point to an OU in a domain different than where SharePoint is installed.  

Pointing to OU's in the same domain works just fine.
0
 
Justin SmithSr. System EngineerCommented:
I don't think it can be used for remote domains.  

Have you tried specifying the remove domain (DC=remote,DC=int) in the path?  Did it error?
0
 
Justin SmithSr. System EngineerCommented:
ALso, verify your app pools and timer account have access on that remote OU
0
Cloud Class® Course: CompTIA Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

 
SupportcomitaAuthor Commented:
I have Access to the OU in forest B, domain2.local. I am able to list the users in the specific OU, but I can also list users in other OUs. I want to restrict it to only show results from the OU I spesify. I am not at all sure if the command I've used that worked within the same domain is usable for this purpose.
0
 
Justin SmithSr. System EngineerCommented:
So have you tried it?  It either works or it doesn't, there is no special step you need to do for going across forests (other than verifying permissions).
0
 
SupportcomitaAuthor Commented:
Yes I have tried using the following command.

stsadm.exe -o setsiteuseraccountdirectorypath -url myurl -path "OU=myOU,OU=hosting,DC=domain2,DC=local"

It doesn't result in an error, but I am not able to find any of the users in people picker after running this command.
0
 
Justin SmithSr. System EngineerCommented:
Ok, it probably won't work then.  I've never tried it, but always read the documentation like it would only work in the same domain.
0
 
SupportcomitaAuthor Commented:
Does anyone have any idea how to resolve this issue?
0
 
SupportcomitaAuthor Commented:
Thanks for your effort ACH1LLES! I guess the solution is to keep the users and the SharePoint server within the same domain.
0
 
SupportcomitaAuthor Commented:
I've requested that this question be closed as follows:

Accepted answer: 0 points for Supportcomita's comment #a38476357

for the following reason:

Closed because it seems like there is no good solution to this problem.
0
 
Justin SmithSr. System EngineerCommented:
Don't delete the question just because it's not possible.  Accept the comment ( 38466740) stating as much :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.