Learn how to a build a cloud-first strategyRegister Now


Replication of Users between Windows 2000 & 2003 Trusted Domains of Different Forests

Posted on 2008-11-04
Medium Priority
Last Modified: 2013-12-05
Hi there!

I have the following setup:

Domain A - Windows 2000 Server Active Directory - server1.domainA.com (Example name) (USA).
Domain A also has an Exchange Server on which all users have their mailbox.

Domain B - Windows 2003 Server R2 Active Directory - server1.domainB.com (Example name) (India)
Domain A & Domain B both have 2 way trust relationship enabled and works fine.

I am trying to do the following:

Domain A is the primary company in USA and has all the user accounts and their mailboxes on the Exchange Server including the one's in India.

Domain B is the remote location in India and I would like to setup User Replication service between Domain A & B so that the users are automatically replicated in Domain B and I don't have to recreate them one at a time. Can someone please help me out?

I checked on Google and Microsoft's Website, but was unable to follow the instructions.
Question by:sajeed
1 Comment
LVL 29

Accepted Solution

Michael Pfister earned 400 total points
ID: 22886106
Replication of user information will only happen between domain controllers within a single domain, not from or to a trusted domain.
The trust only allows you to permit users of domain a to access resources in domain b and vice versa (when establishing a 2way trust as you did). If you want to eliminate duplicate users, migrate to a single domain.

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question