This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 15%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Hi Everyone and Support,
Really need your help to solve this solution. Two domains already fully trusted and Authentication in all forest, permission already verify.
I have two domains. As example Domain A and Domain B, some users in Domain B need to report to specific user in Domain A, below script I used but getting error:
$manager = Get-ADUser -Identity 'CN=UserManager,OU=Users,DC=domainA,DC=com' -Server 'domainA.com:3268' # Uses Global Catalog (GC)
Then Enter:
Set-ADUser -Identity 'UserReporting' -Manager $manager -Server 'domainB.com'
Then Enter -> Error code shows as below:
Set-ADUser : The name reference is invalid
At line:1 char:1
+ Set-ADUser -Identity 'UserReporting' -Manager $manager -Server 'domainB ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : NotSpecified: (UserReporting:ADUser) [Set-ADUser], ADException
+ FullyQualifiedErrorId : ActiveDirectoryServer:8373,Microsoft.ActiveDirectory.Management.Commands.SetADUser
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 77%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Hi FADHIL,
• Is 'UserReporting' a sAMAccountName of this user in domain B?
• Have you been trying with distinguished name or objectGUID or objectSid as Identity parameter?
• What happens, if you use FQDN of Infrastructure Master DC as Server parameter?
Kind Regards
Maurycy
@Maurycy Suchanski Done with your questions, still shows 'The name reference is invalid'.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
The problem is the attempted creation of a user object (not an AD object, just within the PowerShell session) from a different domain.
The easiest way around this is to use ADSI instead of Set-ADUser.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 30%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJH%3C/text%3E%3C/svg%3E)
I still run into the same error in ADSI edit:
I've tried this both in ADSI edit and in Powershell with the same error "Set-ADUser : The name reference is invalid".