you can just export the agent (without giving user credentials) and install (by script/software) them on domain B clients. setup DNS (in domain A & B) and firewall so that clients in domain B can resolve the ePO server and firewall can pass agent<->ePO traffic. I'm guessing that there are only few clients in domain B and it is part of the same physical network (in the same building). we have the same setup in office and this is what we do. So far, we have delpoyed and manages Antivirus, Anti-Spyware, System Compliance Profiler, Rogue Sensor and SiteAdvisor. I don't know if this setup may cause issues when we start rolling out encryption products.
best of luck. let us know if it works.
Thank you for your answer. You guessed right: both domains are different, but in the same building, separated by a firewall.
I have a question though: don't you think that letting domain users in domain B resolving the eposerver (or other devices, because what i will need to do is creating a forward lookup zone in domain B with 1 ip-record to my eposerver?? ) in domain A is a security issue?
I'm a bit hesitating on that, because i don't like those 2 domains working in any sort of way...am i too cautious there?