Active Directory PowerShell: How to Create Forest Trust

Customer got request to create forest transitive trust (with forest-wide authentication) using script. 
First idea might be NETDOM utility, but after better check this this:

Source: http://technet.microsoft.com/en-us/library/cc835085(v=ws.10).aspx

Very encouraging! :o)

Well, the first one was a failed attempt, but the second one with PowerShell was a success. use a technique without importing any additional PS module, which is .Net

System.DirectoryServices.ActiveDirectory.Forest class and Forest.CreateTrustRelationship method.

Note: You have to run this script from local forest (trusted/inbound) under domain admin security context.

The final PS script is here:

# Change following parameters

$strRemoteForest = "forestName1.cz"

$strRemoteAdmin = "adminAccountName"

$strRemoteAdminPassword = ""

$remoteContext = New-Object -TypeName "System.DirectoryServices.ActiveDirectory.DirectoryContext" -ArgumentList @( "Forest", $strRemoteForest, $strRemoteAdmin, $strRemoteAdminPassword)

try {

        $remoteForest = [System.DirectoryServices.ActiveDirectory.Forest]::getForest($remoteContext)

        #Write-Host "GetRemoteForest: Succeeded for domain $($remoteForest)"

    }

catch {

        Write-Warning "GetRemoteForest: Failed:`n`tError: $($($_.Exception).Message)"

    }

Write-Host "Connected to Remote forest: $($remoteForest.Name)"

$localforest=[System.DirectoryServices.ActiveDirectory.Forest]::getCurrentForest()

Write-Host "Connected to Local forest: $($localforest.Name)"

try {

        $localForest.CreateTrustRelationship($remoteForest,"Inbound")

        Write-Host "CreateTrustRelationship: Succeeded for domain $($remoteForest)"

    }

catch {

        Write-Warning "CreateTrustRelationship: Failed for domain $($remoteForest)`n`tError: $($($_.Exception).Message)"

    }