Exchange 2003 intall on AD WAN environment right not found
========================
DC = "SERVERLAPTOP03"
In site = "Default-First-Site-Name"
!!! Right NOT found !!!
========================
DC = "XXXXXXX"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
========================
DC = "SVRLAPTOPCAMP"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
========================
DC = "XXXXXXXX1"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
[11:40:36] Entering HrFindPrintErrorMessage
[11:40:36] Warning: Possible error string '!!! Right NOT found !!!' detected in policytest output.
[11:40:36] Leaving HrFindPrintErrorMessage
[11:40:36] HrRunPolCheck (f:\titanium\dsa\src\deplo
[11:40:36] #*** Policy Check finished: 05/24/2006 11:40:36 ***#
This is the tail end of the OrgPrepCheck test
The server shown is the only one with the right not found error.
It is on a very low bandwitdh connection (to be upgraded soon), but it will not be doing any exchange functions.
How important is this on a server that is not in an office that is critical, and how would I resolve the problem? As it appears that it also does not do the file replication properly, and I think this is again due to bandwidth.
Raybans
DC = "SERVERLAPTOP03"
In site = "Default-First-Site-Name"
!!! Right NOT found !!!
========================
DC = "XXXXXXX"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
========================
DC = "SVRLAPTOPCAMP"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
========================
DC = "XXXXXXXX1"
In site = "Default-First-Site-Name"
Right found: "SeSecurityPrivilege"
[11:40:36] Entering HrFindPrintErrorMessage
[11:40:36] Warning: Possible error string '!!! Right NOT found !!!' detected in policytest output.
[11:40:36] Leaving HrFindPrintErrorMessage
[11:40:36] HrRunPolCheck (f:\titanium\dsa\src\deplo
[11:40:36] #*** Policy Check finished: 05/24/2006 11:40:36 ***#
This is the tail end of the OrgPrepCheck test
The server shown is the only one with the right not found error.
It is on a very low bandwitdh connection (to be upgraded soon), but it will not be doing any exchange functions.
How important is this on a server that is not in an office that is critical, and how would I resolve the problem? As it appears that it also does not do the file replication properly, and I think this is again due to bandwidth.
Raybans
ASKER
before
Single Domain
Main Office
NT4 BDC (was PDC)
NT4 exchange 5.5
2nd Main Office
NT4 BDC
NT4 Exchange 5.5
Back Office
NT4 BDC + Exchange 5.5
5 Satellite Offices
NT4 BDC
Current
Main Office
NT4 BDC (was PDC)
NT4 exchange 5.5
2003 AD with all Master roles
2003 AD Server target for 1st exchange 2003
2nd Main Office
NT4 BDC
NT4 Exchange 5.5
2003 AD
Back Office
NT4 BDC + Exchange 5.5
2003 AD
5 Satellite Offices
NT4 BDC
2003 AD
Only 1 office seems to have a problem with syncing and is also the only site giving the problem showing right not found.
MS Exchange 2003 will not be on any of the remote offices that do not currently have an exchange 5.5 server as users on those sites access email over the VPN.
The VPN link is a ISDN 128 k link to a frame relay link that is straight to the wan routing managed by optus.
There are no firewall appliances involved in the VPN as we have a private routed network instead.
I am considering continuing with the Exchange role out, as that server does not seem critical for what I am doing, and we are expecting the bandwidth issues to be resolved in the next 2 months as it gets an upgrade.
But I need to know if there will be issues with this later.
Or also if there is a way I can take the AD information that needs to be synced and manually take it to the site (on CD or such) and update that server.
there is no problem with users on that site using email and other services over the WAN or us remotely connecting to said server (although RDP is painfully slow over the link)
Single Domain
Main Office
NT4 BDC (was PDC)
NT4 exchange 5.5
2nd Main Office
NT4 BDC
NT4 Exchange 5.5
Back Office
NT4 BDC + Exchange 5.5
5 Satellite Offices
NT4 BDC
Current
Main Office
NT4 BDC (was PDC)
NT4 exchange 5.5
2003 AD with all Master roles
2003 AD Server target for 1st exchange 2003
2nd Main Office
NT4 BDC
NT4 Exchange 5.5
2003 AD
Back Office
NT4 BDC + Exchange 5.5
2003 AD
5 Satellite Offices
NT4 BDC
2003 AD
Only 1 office seems to have a problem with syncing and is also the only site giving the problem showing right not found.
MS Exchange 2003 will not be on any of the remote offices that do not currently have an exchange 5.5 server as users on those sites access email over the VPN.
The VPN link is a ISDN 128 k link to a frame relay link that is straight to the wan routing managed by optus.
There are no firewall appliances involved in the VPN as we have a private routed network instead.
I am considering continuing with the Exchange role out, as that server does not seem critical for what I am doing, and we are expecting the bandwidth issues to be resolved in the next 2 months as it gets an upgrade.
But I need to know if there will be issues with this later.
Or also if there is a way I can take the AD information that needs to be synced and manually take it to the site (on CD or such) and update that server.
there is no problem with users on that site using email and other services over the WAN or us remotely connecting to said server (although RDP is painfully slow over the link)
ASKER
Sorry, we have 4 Global Catalogs,
The Main Office
The Server ready for exchange next to it.
The Server in the back office
and the server in the 2nd main office.
The Main Office
The Server ready for exchange next to it.
The Server in the back office
and the server in the 2nd main office.
You can deploy your first Exchange Server 2003 with the current DCs and GCs working fine. In case, you want to choose a specific DC for Exchange to work with at the time of installation, you can use chooseDC swith with setup.exe for Exchange setup.
How many AD domains you have? single domain / multiple domain model? parent / child?
But, before this, i would like to ask or make sure that your environment is ready for first Exchange server 2003.
Are you introducing your Exchange server 2003 in existing Exchange 5.5 organization? if yes,
Do you have your Exchange 5.5 Directory talking to Active Directory via "Active Directory Connector"?
Do you have Recipient connection Agreement in place and can you replicate changes between Active Directory and Exchange 5.5 Directory (GAL)?
How many Exchange 5.5 sites you have? and have you identified the site which will hold the first Exchange server 2003 in Exchange 5.5 site?
Did you upgrade from windows NT 4.0 domain to AD domain ? or migrated from NT 4.0 domain to AD domain?
If migrated, have you run ADMT to migrate users and groups from NT 4.0 domain to AD domain?
Your ADC should be installed from Exchange server 2003 CD and what about /forestprep and /domainprep?
Please read the documents available at MS site and make sure that you are not missing anything and then go with the installation of first Exchange server 2003 in pure Exchange 5.5 site.
here are some related KBs -->
A comparison of the migration methods for migrating from Exchange Server 5.5 to Exchange Server 2003 or to Exchange 2000 Server.
http://support.microsoft.com/kb/327928/en-us
296260 (http://support.microsoft.com/kb/296260/) How to configure a two-way recipient Connection Agreement for Exchange Server 5.5 users
316886 (http://support.microsoft.com/kb/316886/) How to migrate from Exchange Server 5.5 to Exchange 2000 Server
812593 (http://support.microsoft.com/kb/812593/) Exchange Server 2003 Deployment Tools overview
822942 (http://support.microsoft.com/kb/822942/) Considerations when you upgrade to Exchange Server 2003
Thanks,
Amit Aggarwal
How many AD domains you have? single domain / multiple domain model? parent / child?
But, before this, i would like to ask or make sure that your environment is ready for first Exchange server 2003.
Are you introducing your Exchange server 2003 in existing Exchange 5.5 organization? if yes,
Do you have your Exchange 5.5 Directory talking to Active Directory via "Active Directory Connector"?
Do you have Recipient connection Agreement in place and can you replicate changes between Active Directory and Exchange 5.5 Directory (GAL)?
How many Exchange 5.5 sites you have? and have you identified the site which will hold the first Exchange server 2003 in Exchange 5.5 site?
Did you upgrade from windows NT 4.0 domain to AD domain ? or migrated from NT 4.0 domain to AD domain?
If migrated, have you run ADMT to migrate users and groups from NT 4.0 domain to AD domain?
Your ADC should be installed from Exchange server 2003 CD and what about /forestprep and /domainprep?
Please read the documents available at MS site and make sure that you are not missing anything and then go with the installation of first Exchange server 2003 in pure Exchange 5.5 site.
here are some related KBs -->
A comparison of the migration methods for migrating from Exchange Server 5.5 to Exchange Server 2003 or to Exchange 2000 Server.
http://support.microsoft.com/kb/327928/en-us
296260 (http://support.microsoft.com/kb/296260/) How to configure a two-way recipient Connection Agreement for Exchange Server 5.5 users
316886 (http://support.microsoft.com/kb/316886/) How to migrate from Exchange Server 5.5 to Exchange 2000 Server
812593 (http://support.microsoft.com/kb/812593/) Exchange Server 2003 Deployment Tools overview
822942 (http://support.microsoft.com/kb/822942/) Considerations when you upgrade to Exchange Server 2003
Thanks,
Amit Aggarwal
ASKER
we have done a swing migration
I have done this many tims, just not with a wan environment
that is
NT4 domain
add BDC NT4 Server (swing server)
promote Swing server to PDC
do upgrade of OS and domain to 2003 on this server
when it sets up Active Directory it will do so in a manner that already has the user (SAM) database, and security, and will maintain a relationship with the NT4 BDC's
Then use the Exchange 2003 wizard to setup with an existing exchange site etc.
It is only the remote site that concerned me, as I was ready to move forward without it, but thought I would see if anyone had come across problems like that.
I have done this many tims, just not with a wan environment
that is
NT4 domain
add BDC NT4 Server (swing server)
promote Swing server to PDC
do upgrade of OS and domain to 2003 on this server
when it sets up Active Directory it will do so in a manner that already has the user (SAM) database, and security, and will maintain a relationship with the NT4 BDC's
Then use the Exchange 2003 wizard to setup with an existing exchange site etc.
It is only the remote site that concerned me, as I was ready to move forward without it, but thought I would see if anyone had come across problems like that.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks i will try that when i am back on site next week.
how many total physical locations you have?
how many DCs and GCs with their specific location? how many exchange servers with specific location if any?
Where are you trying to install this Exchange server? and how many DCs and GCs you have in this location?
How many domains? if you have multiple domains like parent and child?
Please provide more info for me to better understand the issue here.
thanks,
Amit Aggarwal.