OK, this may be one of the "dumb"er questions I have ever asked here but I am stumped - and Google just isn't getting granular enough to solve my issue.
I set up a one-way trust relationship:
Trusted domain - widget.local
Trusting domain - muppets.local
Both domains are Windows Server 2008 R2 Enterprise and have one DC each (this is a test bed).
The DC in each domain has a DNS conditional forwarder configured for the other domain.
The trust is validated and functional.
I want to create a user in widget.local that has full domain administrator (or nearly full) privileges in muppets.local. I've found all of the articles that talk about nested groups and I have tried to do this. But, they all say top add the foreign user but they don't say how. So, whenever I try to add a user (or group) from widget (email@example.com) into a universal group in muppets, it just says this object cannot be found.
What am I missing? Did I forget to configure something in the trust? Is my syntax in adding the foreign user wrong?
This is a new realm for me. I have never worked in trusted domains before. Thanks for any help in advance.