I am trying to grant a user permissions to modify (add or delete) DNS entries in DomainA while they are logged into a server in DomainB. There is a two way trust between the domains.
I have added them to the DNSAdmins group on DomainA.
We DO NOT want them to be Domain Admins on DomainA.
We cannot launch the dnsmgmt.mmc and connect to the DNS server. We can ping the server, but cannot connect.
We'd even be OK with using the dnscmd command line tool, but I got an access denied error when I tried that.
What other permissions do I need to set in order to get this work?