When trying to bring a User account from another domain to assign it to a Security Role on the SMP Console, the User account was created under SMP Console>Settings>Security>Account Management>Accounts>Add. The problem is that it only allows entering users from the Main domain. When trying to associate the Windows account with the newly created one the following error is received:
"The specified User is invalid"
The trust relationship configuration has correctly been made between all the domains that are managed on this SMP server.
ITMS 8.5, 8.6, 8.7
It is necessary to bring the account reference from AD.
Users imported by a “User” AD Import rule should not be mistaken for accounts that get created in the SMP Console manually and associated with a “Windows” user. An imported user and a created user account could theoretically have the same name. The user account in the SMP Console will maintain its association with the Windows account unless the user is removed from AD.
A “Role and Account AD Import rule” is needed to import security groups and their membership as roles and accounts into the database. A ”Role and Account” rule will create roles for each imported security group and its membership as “Accounts”. These “Accounts” are also included in the role’s membership.
The AD Import process supports creating Role and Account resources based on Groups and Users in Microsoft Active Directory.
Role resources are created for each Group imported from AD, and Account and Windows Credential resources are created for each User imported from AD. Also, the memberships of the group in AD are also imported.
In order to bring the User account reference from the other domain, you will need to import domain groups and users from Active Directory: