We are in the process of implementing RSA Authentication Manager and SecurID tokens in our network to require 2-factor authentication at the workstation. We have two domains that we access in our environment. In testing, we noticed that a user who logs into one domain cannot perform a run-as and specify credentials in the other domain. Similarly, we use a product called RoyalTS for managing multiple RDP sessions. That application, too, has difficulty creating RDP sessions to systems in the domain other than the one the user logged into. Are there any known solutions for this issue?