• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1115
  • Last Modified:

How to maintain GAL access to original domain for new linked mailboxes in second domain.

Hi,

Bit of a funny one, I am going to start hosting mailboxes for users on a child companies domain.

Just so you know I already have a two way domain trust in place.

I have two questions,

Firstly, is it necessary to create a linked mailbox for each user in our domain then transfer mail somehow from the original mailbox to the linked or can I migrate a mailbox from their domain to ours then grant access to the original NT account in the their domain?

Secondly, given that I would like to perform a gradual migration is there a way that the new linked/migrated mailboxes in our domain can still have access to the GAL in their original domain?

Hope that makes sense, please don't ask why we are only moving mailboxes and not just migrating users to the new domain, it wasn't my idea.

Many thanks,
Sam.
0
Sam_Rendell
Asked:
Sam_Rendell
  • 4
  • 4
1 Solution
 
Justin OwensITIL Problem ManagerCommented:
Mailboxes are tied directly to AD accounts.  You cannot have a mailbox without an AD account.  If you want the mailbox in your new domain, you must have an AD account in your new domain.  If your trust is correctly set up, you should be able to grant users in domain A access to mailboxes in domain B.  

You can set up the new mailbox in domain B (child domain) and then use Outlook to add a profile for outlook pointing to that.  For that matter, you could do that without the trust, if you have your users maintain passwords in both domains.

How many users are you talking about migrating on your initial wave?  Do you already have the new domain set up to receive and send mail?
0
 
Sam_RendellAuthor Commented:
I don't think you got my meaning.

There are already two domains in existence. Both have exchange organisations both have mailboxes. I want to migrate the mailboxes from domain a to domain b but leave user accounts on domain b. I know I can create linked mailboxes in domain a and grant permission to users in domain b. But then I will have to do something nasty like PST emails from mailboxes on domain b and reimport them into the linked boxes on domain a.

0
 
Justin OwensITIL Problem ManagerCommented:
If you want to migrate your mailboxes from DomainA to DomainB and then use the user accounts on DomainB, why do you need to keep DomainA accounts or mailboxes?  What do you want the picture to look like when you are finished with your project?
0
NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

 
Sam_RendellAuthor Commented:
Exchange in Domain A will have all mailboxes. Those that moved from Domain B are still used by user accounts in domain B.

During the transition some domain B users will have mailboxes on both hence the need for access to both GALs.
0
 
Justin OwensITIL Problem ManagerCommented:
You are going to have issues with this idea.  You cannot open a primary Exchange profile but from one mailbox at a time.  So, if your users are logging into DomainB AD account and mailbox, that is the GAL they will see.  Exchange cannot natively pull its GAL from anything outside the forest.  If I am reading correctly, you want DomainB users to see DomainA mailboxes in their GAL.  Do you want ALL DomainB users to see DomainA's GAL, or just the users who exist in both domains?  Your easiest solution would be to do a GAL sync.  You can use MS's Identity Integration Feature Pack to accomplish this:

http://www.msexchange.org/tutorials/GAL-Sync-Identity-Integration-Feature-Pack-IIFP.html

Justin
0
 
Sam_RendellAuthor Commented:
Thanks that looks like the kind of solution I had in mind, I'll give that a good look.

As for moving the mailboxes from B to A is my only option creating new linked mailboxes in A and then moving the emails manually?

Cheers,
S.
0
 
Justin OwensITIL Problem ManagerCommented:
If you wanted to do a total migration, I know of some tools to automate the process.  Because you only want to do a partial migration, I am unaware of any method other than a manual move (exmerge, for example).
0
 
Sam_RendellAuthor Commented:
Okidoki thanks for your help.

S.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now