Documentation should clearly state that without --add-sids no existing users and groups will be available in GC
ipa-adtrust-install does display a warning in the beginning of setup process but does not say that existing users will not be copied to GC. IMO it would be nice to display such warning near the message about network ports.
globalcatalog.log contains ERROR messages after running ipa-adtrust-install