Solved

Exchange RUS in Co-exhistance producing 8270 Error

Posted on 2009-05-04
6
506 Views
Last Modified: 2012-08-13
I am currently migrating two domains from an exchange 2003 environment to 2007

the exchange 2003 system sits in a child domain along with all of the production users. i am installing exhcange 2007 into the root domain.
Users in the root domain are not being updated by the 2003 recipient update policy, and i am contunually recieving error messages from the RUS service on
on the 2003 system saying that the server does not have LDAP permissions over the user object in the root domain.
i have read around the usual forums and found that alot of these issues are to do with permissions not inheriting from the above containers in ADSI edit.
this however is not the issue as i have checked the effective permissions on the user objects on the root domain, and all exchange servers in the child domain
have the correct permissions to the user objects.

furthermore i am recieving error messages when creating new mailboxes on the root domain 2007 system.

'The Exchange server address list service failed to respond. This could be because of an address list or email address policy configuration error.'

Im sure that these two issues are the same.

Thanks in advance for any advice



0
Comment
Question by:s1d3wind3r
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 17

Expert Comment

by:Suraj
ID: 24296014
This error you are getting since you Microsoft Exchange System Attendent service is not started. You can start the same on Exchange 2007 server and then let me know if in case still the issue persists.

Thanks,
x-sam
0
 
LVL 4

Author Comment

by:s1d3wind3r
ID: 24296201
Hi x-sam,

The System Attendant service was already started on all the 2007 servers. restarted on all the boxes and same issue occured

any other thoughts?

Thanks
0
 
LVL 17

Expert Comment

by:Suraj
ID: 24296225
You can run setup /pl to prepare the exchange legacy permission and the run setup /prepareAD. This should resolve the issue.

Any specific event id on the application log on either Exchange 2003 or Exchange 2007?

Thanks,
x-sam
0
Veeam gives away 10 full conference passes

Veeam is a VMworld 2017 US & Europe Platinum Sponsor. Enter the raffle to get the full conference pass. Pass includes the admission to all general and breakout sessions, VMware Hands-On Labs, Solutions Exchange, exclusive giveaways and the great VMworld Customer Appreciation Part

 
LVL 4

Author Comment

by:s1d3wind3r
ID: 24297312
have run preparelegacyexchangepermissions, prepareAD and PrepareAllDomains in both domains

there are only a couple of errors in the logs. both seem to indicate the exchange servers in the child domain do not have permission to update the exchange fields in the root domain:


Event Type:      Error
Event Source:      MSExchangeAL
Event Category:      LDAP Operations
Event ID:      8270
Date:            02/05/2009
Time:            20:48:42
User:            N/A
Computer:      <exchange2003node>
Description:
LDAP returned the error [32] Insufficient Rights when importing the transaction
dn: <GUID=AE5F7177356D0A438691EF037E1F718D>
changetype: Modify
msExchPoliciesIncluded:delete:{26491cfc-9e50-4857-861b-0cb8df22b5d7}
mail:Test.Account@EmailDomain.com
textEncodedORAddress:c=GB;a= ;p=ExchangeOrg;o=Exchange;s=TEST 08;g=Account;
msExchPoliciesIncluded:add:{702686B5-AD43-4ABF-9038-7D5DE76BC77D},{26491CFC-9E50-4857-861B-0CB8DF22B5D7}
showInAddressBook:add:CN=All Users,CN=All Address Lists,CN=Address Lists Container,CN=EPLC,CN=Microsof...
: CN=Default Global Address List,CN=All Global Address Lists,CN=Address Lists Cont...
msExchALObjectVersion:52
objectGUID:AE5F7177356D0A438691EF037E1F718D
-
 DC=RootDomain,DC=RootDomain

For more information, click http://www.microsoft.com/contentredirect.asp.
0
 
LVL 4

Accepted Solution

by:
s1d3wind3r earned 0 total points
ID: 24426585
Just a quick note to round this one off.

eventually i stumbled upon this post from MSEXCHANGETEAM which answered the issue

http://msexchangeteam.com/archive/2007/03/12/436983.aspx

Thanks
0
 

Expert Comment

by:cormack12
ID: 24764165
Hi

I have asked a similar question here:

http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_24539723.html

Were the symptoms described there the same as you were experiencing? Also, when you ran this script did it sort out the problems for new 2003 mailboxes, and the 'email addresses' tab being blank?

Thanks
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out what you should include to make the best professional email signature for your organization.
A couple of months ago we ran into an issue that necessitated re-creating our Edge Subscriptions. However, when we attempted to execute the command: New-EdgeSubscription -filename C:\NewEdgeSub_01.xml we received an error indicating that the LDAP se…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
how to add IIS SMTP to handle application/Scanner relays into office 365.
Suggested Courses
Course of the Month5 days, 13 hours left to enroll

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question