Solved

How to maintain GAL access to original domain for new linked mailboxes in second domain.

Posted on 2010-08-20
8
1,036 Views
Last Modified: 2012-05-10
Hi,

Bit of a funny one, I am going to start hosting mailboxes for users on a child companies domain.

Just so you know I already have a two way domain trust in place.

I have two questions,

Firstly, is it necessary to create a linked mailbox for each user in our domain then transfer mail somehow from the original mailbox to the linked or can I migrate a mailbox from their domain to ours then grant access to the original NT account in the their domain?

Secondly, given that I would like to perform a gradual migration is there a way that the new linked/migrated mailboxes in our domain can still have access to the GAL in their original domain?

Hope that makes sense, please don't ask why we are only moving mailboxes and not just migrating users to the new domain, it wasn't my idea.

Many thanks,
Sam.
0
Comment
Question by:Sam_Rendell
  • 4
  • 4
8 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33487204
Mailboxes are tied directly to AD accounts.  You cannot have a mailbox without an AD account.  If you want the mailbox in your new domain, you must have an AD account in your new domain.  If your trust is correctly set up, you should be able to grant users in domain A access to mailboxes in domain B.  

You can set up the new mailbox in domain B (child domain) and then use Outlook to add a profile for outlook pointing to that.  For that matter, you could do that without the trust, if you have your users maintain passwords in both domains.

How many users are you talking about migrating on your initial wave?  Do you already have the new domain set up to receive and send mail?
0
 

Author Comment

by:Sam_Rendell
ID: 33498908
I don't think you got my meaning.

There are already two domains in existence. Both have exchange organisations both have mailboxes. I want to migrate the mailboxes from domain a to domain b but leave user accounts on domain b. I know I can create linked mailboxes in domain a and grant permission to users in domain b. But then I will have to do something nasty like PST emails from mailboxes on domain b and reimport them into the linked boxes on domain a.

0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500327
If you want to migrate your mailboxes from DomainA to DomainB and then use the user accounts on DomainB, why do you need to keep DomainA accounts or mailboxes?  What do you want the picture to look like when you are finished with your project?
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:Sam_Rendell
ID: 33500347
Exchange in Domain A will have all mailboxes. Those that moved from Domain B are still used by user accounts in domain B.

During the transition some domain B users will have mailboxes on both hence the need for access to both GALs.
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 500 total points
ID: 33500408
You are going to have issues with this idea.  You cannot open a primary Exchange profile but from one mailbox at a time.  So, if your users are logging into DomainB AD account and mailbox, that is the GAL they will see.  Exchange cannot natively pull its GAL from anything outside the forest.  If I am reading correctly, you want DomainB users to see DomainA mailboxes in their GAL.  Do you want ALL DomainB users to see DomainA's GAL, or just the users who exist in both domains?  Your easiest solution would be to do a GAL sync.  You can use MS's Identity Integration Feature Pack to accomplish this:

http://www.msexchange.org/tutorials/GAL-Sync-Identity-Integration-Feature-Pack-IIFP.html

Justin
0
 

Author Comment

by:Sam_Rendell
ID: 33500500
Thanks that looks like the kind of solution I had in mind, I'll give that a good look.

As for moving the mailboxes from B to A is my only option creating new linked mailboxes in A and then moving the emails manually?

Cheers,
S.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500518
If you wanted to do a total migration, I know of some tools to automate the process.  Because you only want to do a partial migration, I am unaware of any method other than a manual move (exmerge, for example).
0
 

Author Comment

by:Sam_Rendell
ID: 33500571
Okidoki thanks for your help.

S.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
how to add IIS SMTP to handle application/Scanner relays into office 365.

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question