Domainenübergreifender Benutzer

$AD_Domain_User = $AD_Domain + $AD_User
$securepass = gc "D:\Scripts\password\pwd.txt" | convertto-SecureString   
$cred = New-Object PSCredential($AD_Domain_User, $securepass) 

$Global:all2 = @()
$gruppen | %{
    $mitglieder = @()
    $mitglieder += Get-AdGroupMember $_ -Recursive -Server $server -Credential $cred -EA SilentlyContinue
    $mitglieder += Get-ADGroupMember $_ -Server $Server -Credential $cred -EA SilentlyContinue | ?{$_.objectClass -eq "group"} | Get-ADGroupMember -Recursive   
    $additionalProperties | %{Add-Member -InputObject $mitglieder -MemberType NoteProperty -Name $_ -Value ''}   
    foreach($member in $mitglieder){ 
        $props = get-aduser -Server $server -Credential $cred $member.SamAccountName -Properties $additionalProperties | select $additionalProperties 
        $additionalProperties |%{$member.($_) = $props.($_)} 
    }  
    $mitglieder = $mitglieder | ?{$_.Enabled -eq $true} | sort Name | select -Unique
    $all += New-Object PSObject -Property @{Gruppe=$_;Mitglieder=$mitglieder} 
    $all2 += $mitglieder
}

Get-AdGroupMember : The server has rejected the client credentials.
At D:\dienst\bluecoat\Scripts\scripts\bud.ps1:37 char:20
+     $mitglieder += Get-AdGroupMember $_ -Recursive -Server $server -Credential $ ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : SecurityError: (Internet-Basis:ADGroup) [Get-ADGroupMember], AuthenticationException
    + FullyQualifiedErrorId : ActiveDirectoryCmdlet:System.Security.Authentication.AuthenticationException,Microsoft.ActiveDirectory.Management.Commands.GetADGroupMember