Hi

I'm just watching through and trying the method of adding a universal group to a global group of another domain. But I'm getting error saying it cannot find or locate user, and please wait 15mins for replication to take place to the global catalog. I have follow the steps exactly, but are still getting the same error.

I have try using repadmin/ syncall, but still the same

Anyone know why this is happening,

Thanks

My understanding is for a single domain forest you would nest a Global group in a Domain Local group and for a multi domain forest you would nest a Global group in a Universal group that is nested in a Domain Local group.

G -> DL

G -> U -> DL

Remember you create the NTFS permissions on the DL group.

Hi

I'm sure its done correctly, but I'm unsure how to force replication between the two domain.

Domain local group in globomantics.com, universal in na.globomantics.com

But everytime I try add the universal into the domain local, it brings the same error saying the user may not exist, and that replication to global catalog could take upto 15mins

Don't forget you need to setup a trust. As for adding the group. The group that you want to add the Global Group to needs to be a domain local group first not a universial.

You'll need to change the group to universial first then change it to domain Local.