Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Exchange RUS in Co-exhistance producing 8270 Error

Posted on 2009-05-04
6
Medium Priority
?
507 Views
Last Modified: 2012-08-13
I am currently migrating two domains from an exchange 2003 environment to 2007

the exchange 2003 system sits in a child domain along with all of the production users. i am installing exhcange 2007 into the root domain.
Users in the root domain are not being updated by the 2003 recipient update policy, and i am contunually recieving error messages from the RUS service on
on the 2003 system saying that the server does not have LDAP permissions over the user object in the root domain.
i have read around the usual forums and found that alot of these issues are to do with permissions not inheriting from the above containers in ADSI edit.
this however is not the issue as i have checked the effective permissions on the user objects on the root domain, and all exchange servers in the child domain
have the correct permissions to the user objects.

furthermore i am recieving error messages when creating new mailboxes on the root domain 2007 system.

'The Exchange server address list service failed to respond. This could be because of an address list or email address policy configuration error.'

Im sure that these two issues are the same.

Thanks in advance for any advice



0
Comment
Question by:s1d3wind3r
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 17

Expert Comment

by:Suraj
ID: 24296014
This error you are getting since you Microsoft Exchange System Attendent service is not started. You can start the same on Exchange 2007 server and then let me know if in case still the issue persists.

Thanks,
x-sam
0
 
LVL 4

Author Comment

by:s1d3wind3r
ID: 24296201
Hi x-sam,

The System Attendant service was already started on all the 2007 servers. restarted on all the boxes and same issue occured

any other thoughts?

Thanks
0
 
LVL 17

Expert Comment

by:Suraj
ID: 24296225
You can run setup /pl to prepare the exchange legacy permission and the run setup /prepareAD. This should resolve the issue.

Any specific event id on the application log on either Exchange 2003 or Exchange 2007?

Thanks,
x-sam
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
LVL 4

Author Comment

by:s1d3wind3r
ID: 24297312
have run preparelegacyexchangepermissions, prepareAD and PrepareAllDomains in both domains

there are only a couple of errors in the logs. both seem to indicate the exchange servers in the child domain do not have permission to update the exchange fields in the root domain:


Event Type:      Error
Event Source:      MSExchangeAL
Event Category:      LDAP Operations
Event ID:      8270
Date:            02/05/2009
Time:            20:48:42
User:            N/A
Computer:      <exchange2003node>
Description:
LDAP returned the error [32] Insufficient Rights when importing the transaction
dn: <GUID=AE5F7177356D0A438691EF037E1F718D>
changetype: Modify
msExchPoliciesIncluded:delete:{26491cfc-9e50-4857-861b-0cb8df22b5d7}
mail:Test.Account@EmailDomain.com
textEncodedORAddress:c=GB;a= ;p=ExchangeOrg;o=Exchange;s=TEST 08;g=Account;
msExchPoliciesIncluded:add:{702686B5-AD43-4ABF-9038-7D5DE76BC77D},{26491CFC-9E50-4857-861B-0CB8DF22B5D7}
showInAddressBook:add:CN=All Users,CN=All Address Lists,CN=Address Lists Container,CN=EPLC,CN=Microsof...
: CN=Default Global Address List,CN=All Global Address Lists,CN=Address Lists Cont...
msExchALObjectVersion:52
objectGUID:AE5F7177356D0A438691EF037E1F718D
-
 DC=RootDomain,DC=RootDomain

For more information, click http://www.microsoft.com/contentredirect.asp.
0
 
LVL 4

Accepted Solution

by:
s1d3wind3r earned 0 total points
ID: 24426585
Just a quick note to round this one off.

eventually i stumbled upon this post from MSEXCHANGETEAM which answered the issue

http://msexchangeteam.com/archive/2007/03/12/436983.aspx

Thanks
0
 

Expert Comment

by:cormack12
ID: 24764165
Hi

I have asked a similar question here:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_24539723.html

Were the symptoms described there the same as you were experiencing? Also, when you ran this script did it sort out the problems for new 2003 mailboxes, and the 'email addresses' tab being blank?

Thanks
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
In this video we show how to create a Contact in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Contact ta…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

722 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question