Is there a way to list users from a domain local group that’s members are from a trusted domain? When I want to add members to this group from the trusted domain I just grab the user name providing my credentials for that domain, and then do a add-groupmember providing my credentials from the domain I manage. But I haven’t found a way to provide both sets of credentials to do a get-adgroupmember “groupname”. I get an internal error when trying to run the get-adgroupmember command and I’m assuming its because the users are in the trusted domain and I didn’t provide credentials for that domain.
Haven’t ran into this before myself but I do know the entries from deleted users or users that can’t be resolved are the SID. So you could query the remote domain for users and build a hash table with the SID as the key. Then when you pull your group members for your local domain, any that are just a SID you can resolve using the lookup hash table you made previously.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.