thanks for the update.
our company holds more than 23 000 staff, and the domain accounts are controlled by the IT department and we have 21 doimains and 1 main domain, shared services is used to run off the active directory- main domain, i have tried to compare two users who can authenticate to two users who cannot authenticate in shared services
the one property i found that is common in all 4 is that all 4 are members of the internetuser group.
is there are way to set up shared services to target the interenetuer group first and then the domain
alternatively, could i set up the shared services to scan the entire directory of domains (i.e. all 22) instead of listing each domain in shared services i know the concern is that if a user is linked to two domain and has different passwords shared services will not authenticate