如何让用户属于不同域中的不同组并使用powershell脚本通过身份验证？

要跨不同域检索用户的组成员身份，您必须单独连接到域的 Active Directory，然后查询该域中用户的组成员身份。

# Prompt for credentials
$credential = Get-Credential

# UserID to search for
$userID = 'yourUserID' 

$domain = 'yourdomain.com'

# retrieve group memberships
Write-Host "Checking $domain"
   
# Connect to the domain's AD
$domainContext = New-PSDrive -Name AD_$domain -PSProvider ActiveDirectory -Root "" -Scope Global -Server $domain -Credential $credential
        
# Check user's group membership in the domain
$user = Get-ADUser -Identity $userID -Properties MemberOf -Server $domain -Credential $credential

$groups = ($user.MemberOf | ForEach-Object { (Get-ADGroup -Identity $_ -Server $domain).Name }) -join ', '

Write-Host "User $userID is a member of the following groups in $domain: $groups"