Hello,
I have local domain: Accounts.root.corp. There is 2 way external trust relationship with external domains: infra1.local and infra2.local.
In my local domain Accounts.root.corp under Foreign Security Principals container, there are FSP objects showing from external domains infra1.local and infra2.local. However, I'm wondering why there are so many active user accounts from local
domain: Accounts.root.corp showing under Foreign Security Principals? As per the definition, it should only contains security Principals in a trusted external domain/forest.
Apart from this, how do I validate usage of FSP objects in my domain. How do I determine whether certain FSP objects should be removed or not from my local domain?