Samba Winbind in Trusted Forest can't enumerate group membership

Hello, i'am issuing e problem with winbind samba joined computer. the system is unable to verify the group memberships in Forest B. All users from Forest B are only part of the "Domain Users" group; id B\\USERNAME -> returns only uid(b\username) and gid(b\domain users) however, once they log in to the system via SSH, the group memberships are correctly populated. Record saved into samlogon net cache with the respective SID and username This limitation poses a problem if we want to restrict SSH access to specific users and groups. Have you encountered this issue or found a solution to it? https://unix.stackexchange.com/questions/536001/samba-winbind-how-to-authenticate-from-trusted-ad-domain-one-way-trust/790017?noredirect=1#comment1515924_790017