Hello all,
First, the question: Is there a way to exclude/isolate a particular computer from a cross-forest trust?
Now, the details:
I am working on a project to decommission an acquired domain. Part of this is to change a user account in the acquired domain (we'll call it Domain2) that is hard-coded on developer computers to a new user in the primary domain (Domain1). The same Domain2\user is hard-coded on all developer boxes. The computers themselves have already been migrated to Domain1.
Once I change the Domain2\user to the new Domain1\user on one machine, I need to be able to test functionality and see if I missed anythingwithout taking all of the developers down (hence, I can't just sever the trust, test, and add it back). The ideal way I can think of - if possible - is to exclude a particular computer from partaking in the trust between Domain1 and Domain2.
Does anyone know of a way to do this? I was considering making fake hosts entries on the computer to "blackhole" all of the Domain2 DCs, but not sure if that would work.
Any ideas would be greatly appreciated.
Cheers!