This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 96%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EM4%3C/text%3E%3C/svg%3E)
I am trying to add a user from a child domain to a group in the root domain, but I am receiving this error:
The specified user was not found. If the user exists on another active directory Domain controller in the enterprise, it may take 15 minutes or more for the user to be replicated to the global catalog
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Did you check replication and active directory health using the following command:
repadmin /showrepl
dcdiag
Did you try to disable and enable global catalog on domain controller in root domain ?
Check if you have the same issue when Global catalog is unchecked in root domain.
Please don't forget to accept helpful answer
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Make sure that the group scope is either domain local or universal. It cannot be domain global - if it is, convert it to either of the other two.
If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.
hth
Marcin
The scope is local
Do you think that I have to change it to universal ?
either domain local or universal should work when a user object resides in another domain in the same forest. Make sure that the notation you are using to specify the user account name matches the SAMAccountName attribute of the user.
Btw. you should be able to complete directly in Active Directory Users and Computers MMC console - without having to type the user name (simply by browsing the list of users in the other domain)
hth
Marcin
Did it but I still get same error
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Hello MamadouCoulibali-4946,
Thank you for posting in Q%A forum.
1.Please check if this user is actually in child domain.
2.Please check AD replication on PDC in the root domain.
repadmin /showrepl >C:\rep1.txt
repadmin /replsum >C:\rep2.txt
repadmin /showrepl * /csv >c:\repsum.csv
3.Force the entire AD forest to replicate and check if you can perform the same operation.
I hope the information above is helpful.
If you have any questions or concerns, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.