You enable selective authentication when creating a trust between forests. However, when users try to log on, they get an error message indicating a logon failure. How can you fix this problem?
1) Add a group of users to the local Active Directory Domain Service of the trusting forest
2) Enable SID filtering between domains within each forest and disable it between the forests
3) Add users to the DACL of computer accounts in the trusting forest and grant permission
4) Ensure a two-way trust relationship has been established to allow bidirectional authentication