I have setup with single forest and 4 domain and we have separated a domain from our infra. So we want to restrict that particular domain to access all other 3 domains in the same forest.
Ie - Forest 1: Domain 1, domain 2, domain 3 domain 4.
Here domain 4 should not have any access to other domain even administrators can't access the remaining.
I have removed enterprise admin access for Domain 4 admins and removed the privilege from built-in administrators. Let me if any other missing parts and do required any GPO to restrict parentally