I have setup a two way transitive forest trust between two domains (Domain A & Domain B) successfully. Now when I try to RDP as a user in domain A (admin@domainA.com) into domain B it is connecting but displaying an error message stating "the connection was denied because the author is not authorized to perform remote login". How can I overcome this? I'm unable to add other domain users in the remote login group too as other domain users are not even listed. What am I missing here?
UPDATE:
Here is a screenshot of locations when I try to add users to RDP group
Here is a screenshot of locations when I try to give permissions to a file in domain B.
Best Answer
Ok I've found a way to overcome this. First the reason why the other domain didn't get listed is because I was trying to add the user in the "Domain Admins" group whose scope was set as "Global".
So in order to make the other domain user login, we have to add the user in the built-in groups (eg: Administrators, Remote desktop Users etc..). These groups have their scope set to "Domain Local" and hence under locations other domains are also displayed. I was able to login once I added the user in the Administrators group. (Remote Desktop Users group alone was not enough for whatever reasons and I'm not sure why.)