Move Exchange 2007(with DC) from one domain to another.

Tadkinsmcclellan
Tadkinsmcclellan used Ask the Experts™
on
This is a toughy!  I have two buildings - Building A and Building B - connected by T1.  Right now Building A travels across the T1 to get the Exchange 2007 mailboxes.  The Exchange server sits in the DMZ at Building B.  I know . . . bad, very bad.

To make matters worse . . . Building A has it's own domain (really only 1 DC).  Building B (the Exchange box) also is a DC on a separate domain - sitting there all by itself - no other DCs.

Here's what I want to do:

1.  Move the Exchange box out of Building B's DMZ over to Building A internal network.
2.  Join the Exchange box to Building A's domain.

Questions:

1.  How to do it?
2.  What exactly am I going to screw up?

Thanks so much for ANY help!
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Expert of the Year 2007
Expert of the Year 2006

Commented:
You cannot pick up an Exchange server and put it in to another domain. That doesn't work. Therefore the Exchange server would have to be rebuilt.
The problem will be getting the data out, as there is no server side export/import until E2007 SP1 is released later in the year.

Simon.

Author

Commented:
I kind of stumbled on that after I posted the request.  With that being understood . . .

Can I move it over to the other building and establish trust relationships between the two existing domains?  Are there any issues here that anyone can see?

I'm certainly not in a position to reload that box at this time.
Expert of the Year 2007
Expert of the Year 2006

Commented:
You could put a trust in place. You will not get any shared data capabilities though.

Simon.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
I'm not worried about sharing data.  Just a single point of authenication for both domains would be cool.  I'm curious as to what trust relationship would be recommended here?

Just for reference, the process of users at Building A to get their mailboxes from Building B is terribly slow!  
Expert of the Year 2007
Expert of the Year 2006

Commented:
The only way you would get single authentication is if the users had an account in the other domain, then you put the trust in place and gave the other account full mailbox access to the original account. Then you can look at what domain the workstations are in.

Simon.

Author

Commented:
The users have accounts in both domains, so that won't be an issue.  So, you think I have to go in and specify account access for each mailbox for the orginiating domain?  And I'm confused about the last sentence.

Thanks so much for your help!  I certainly appreciate your knowledge.
Expert of the Year 2007
Expert of the Year 2006
Commented:
What was confusing about my last sentence?

If the workstations are in the same domain as the Exchange server then you don't have a problem with authentication.
If the workstations are in the other domain then you could have issues with authentication depending on the permissions you have granted to the accounts.
Exchange and trusts can be a pain to manage, particularly with Exchange 2007 where you have to grant the permissions via PowerShell in most cases.

Simon.

Author

Commented:
Looks like I'm going to try to get the customer to leave things alone with the status quo as the workstations are in the other domain - not the Exchange domain.  I certainly don't want to create pain for the users as I've sure there will be LOTs of gotchas that I haven't thought of.

CRAP!  Looks like we're stuck as we can't even rebuild the box until SP1 comes out later this year.

Thanks for your help Simon.  I think you just saved me TONS of headaches!

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial