staffUser=ActiveDirectory.search("User",staffName,adHostStaff )
corpGroups=ActiveDirectory.search("UserGroup",groupName,adHost )
corpGroup=corpGroups[0];
corpGroup.addElements(staffUser)
Have you tried either...
staffUser=ActiveDirectory.search("User",staffName,adHostStaff )[0];
corpGroups=ActiveDirectory.search("UserGroup",groupName,adHost );
corpGroup=corpGroups[0];
corpGroup.addElements(staffUser);
Or...
staffUser=ActiveDirectory.search("User",staffName,adHostStaff );
corpGroups=ActiveDirectory.search("UserGroup",groupName,adHost );
corpGroup=corpGroups[0];
corpGroup.addElements(staffUser[0]);
Ad search returns an array even if you find only one object...
Next...
Can you validate your user...
staffUser=ActiveDirectory.search("User",staffName,adHostStaff );
System.log(staffUser[0].distinguishedName); // this is from memory, but I think it is right
corpGroups=ActiveDirectory.search("UserGroup",groupName,adHost );
corpGroup=corpGroups[0];
System.log(corpGroup.name); //also from memory but I think it is right
corpGroup.addElements(staffUser);
The nature of adding it should be an ldap call to the AD that holds the group, specifying the user object. I believe it is the responsibility of the domain to then rationalize the trust. I think this should be working for you, but unfortunately my domains at work that I use in the plugin do not have a trust... so I cannot check. I have had considerable success working with two different domains with accounts that were exactly the same in both. (this accomplished via custom vRO actions that do all lookups/searches and work "byHost" so I can target domains specifically in the workflows.)
At any rate, give those few things a look. Maybe there is something actually to it, and it will work out for you. More logging of the objects might help (if you haven't done that already).
