I currently have a problem with trusting a new name suffix.
System: Domain A: 4 DCs / DNS servers (Windows Server 2012R2 to 2019)
Domain B: 1 DC/DNS server (Windows Server 2012R2)
2way trust in between
Problem:New UPN was added on domain B and is visible in domain A - but if you want to enable it (or refresh the list in general), we get the error "There are not enough system resources to run the requested service."
It was tried on all 4 DCs - no success even with "netdom" on cli
Solution approaches:- Virus scan (realtime) disabled
- FW checked to domain A (and back)
- DC's rebooted
- Domain checks ok (dcdiag, FSMO, DNS,..)
- Event logs got no event at the time which are necessary
- Servers aren't busy either or something.
Unfortunately, I have no more ideas - maybe someone has a solution?