Skip to main content

Rule based on AD group not functioning across trusted domains

Article # 3015815 - Page views: 227

Problem Statement:

If a user who belongs to "Domain A" prints to DRE belongs to "Domain A" then the rule is applied but if he prints to a DRE on "Domain B" then the rule is not applied. The same behavior occurs for a user who belongs to "Domain B" when he prints to DRE on "Domain B" the rule works fine but if he prints to DRE on "Domain A" the rule doesn't work.


This could happen if the wrong suffix was appended to the unqualified username.   


To address this issue, navigate to Network Connection on the DRE Servers, choose "Change adapter settings" then navigate to the properties of the Local Area Connection, then the properties of Internet Protocol Version 4 (TCP/IPv4), then Advanced under the General tab, then under the DNS tab select the option "Append these DNS suffixes (in order):" instead of "Append primary and connection specific DNS suffixes" and add the list of Domain Controllers the users belong to.