Exchange asking for User log in

Does the other domain controller host a Global Catalog?  Exchange needs to authenticate against a DC with the global catalog.  Look at AD Sites and Services.  Drill down to the domain controller that now hosts your AD.  Expand and look at the Properties for NTDS Settings (I think).  There is a check box for Global Catalog.  Ensure that it is checked.

I made the change and will check in the AM.

Nobody had access to Outlook again shortly after I made that Global Catalog change.

After making that change did you do anything to Exchange? Like restart its services? If not then I would do that.

Simon.

In fact, delayed-replication between Master AD (DC) and Exchange.  Those are placed on differenet sites?

no, same site...it was like 20 min after changing the GAS that it had happened.  I also notice an Mx record for Exchange was not in DNS, although I don't think that was the problem.  

I'll try again and reboot both servers in the morning.  Very weird.

Maybe I missed a step, can someone provide me with documentation on how to change a Domain Controller?

What do you mean "change a domain controller" ?
Unless Exchange has been hard coded to a domain controller in the Properties of the server then after restarting the Exchange services Exchange will use the first DC to respond.

Simon.

So Exchange needs to be restarted?  I have two domain controllers...when I shut off one of them that is when all the problems start.

You can use nltest.exe to see which Global Catalog server Exchange has attached itself to.  The switch with the command is /sc_query.  Look at the help for the command to get the exact syntax.

If the GC server locks up, you can manually reset the Exchange server to use another Global Catalog using the /sc_reset switch with the nltest.exe command.

It was an AD sync issue...the server the Exchange was on was a domain server, that was not fully operational as a domain controller

http://www.petri.co.il/forums/showthread.php?t=7122