Main office has Windows Server 2003 R2 PDC. It is the only DC, so it's filling all the roles right now. The domain functional level is Server 2003. The Forest functional level is Windows 2000.
We are adding a branch office which will connect to the main office using a hardware VPN solution (Cisco IPSec tunnel). Main office has a T1 and the branch office has a 512K/128K DSL connection. So bandwidth will not be huge, but it should be sufficient.
The only server I have available to install in the branch office has a Windows 2000 Server license. I cannot purchase any new licenses in this scenario.
Exchange 2003 is running in the main office, and we want to allow the branch office to access exchange mailboxes with their primary login, if possible.
What is the best solution to configure Active Directory in this setting?
Since the domain functional level is already set to Server 2003, I don't believe I can add the Windows 2000 server as a DC in that domain. Correct me if I'm wrong, please.
Should I create a child domain and make the branch office Win2K server the DC of that domain? I'm just not sure what the best practice in this scenario would be.
I appreciate your assistance in advance.