Solved

How to maintain GAL access to original domain for new linked mailboxes in second domain.

Posted on 2010-08-20
8
1,059 Views
Last Modified: 2012-05-10
Hi,

Bit of a funny one, I am going to start hosting mailboxes for users on a child companies domain.

Just so you know I already have a two way domain trust in place.

I have two questions,

Firstly, is it necessary to create a linked mailbox for each user in our domain then transfer mail somehow from the original mailbox to the linked or can I migrate a mailbox from their domain to ours then grant access to the original NT account in the their domain?

Secondly, given that I would like to perform a gradual migration is there a way that the new linked/migrated mailboxes in our domain can still have access to the GAL in their original domain?

Hope that makes sense, please don't ask why we are only moving mailboxes and not just migrating users to the new domain, it wasn't my idea.

Many thanks,
Sam.
0
Comment
Question by:Sam_Rendell
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33487204
Mailboxes are tied directly to AD accounts.  You cannot have a mailbox without an AD account.  If you want the mailbox in your new domain, you must have an AD account in your new domain.  If your trust is correctly set up, you should be able to grant users in domain A access to mailboxes in domain B.  

You can set up the new mailbox in domain B (child domain) and then use Outlook to add a profile for outlook pointing to that.  For that matter, you could do that without the trust, if you have your users maintain passwords in both domains.

How many users are you talking about migrating on your initial wave?  Do you already have the new domain set up to receive and send mail?
0
 

Author Comment

by:Sam_Rendell
ID: 33498908
I don't think you got my meaning.

There are already two domains in existence. Both have exchange organisations both have mailboxes. I want to migrate the mailboxes from domain a to domain b but leave user accounts on domain b. I know I can create linked mailboxes in domain a and grant permission to users in domain b. But then I will have to do something nasty like PST emails from mailboxes on domain b and reimport them into the linked boxes on domain a.

0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500327
If you want to migrate your mailboxes from DomainA to DomainB and then use the user accounts on DomainB, why do you need to keep DomainA accounts or mailboxes?  What do you want the picture to look like when you are finished with your project?
0
Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

 

Author Comment

by:Sam_Rendell
ID: 33500347
Exchange in Domain A will have all mailboxes. Those that moved from Domain B are still used by user accounts in domain B.

During the transition some domain B users will have mailboxes on both hence the need for access to both GALs.
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 500 total points
ID: 33500408
You are going to have issues with this idea.  You cannot open a primary Exchange profile but from one mailbox at a time.  So, if your users are logging into DomainB AD account and mailbox, that is the GAL they will see.  Exchange cannot natively pull its GAL from anything outside the forest.  If I am reading correctly, you want DomainB users to see DomainA mailboxes in their GAL.  Do you want ALL DomainB users to see DomainA's GAL, or just the users who exist in both domains?  Your easiest solution would be to do a GAL sync.  You can use MS's Identity Integration Feature Pack to accomplish this:

http://www.msexchange.org/tutorials/GAL-Sync-Identity-Integration-Feature-Pack-IIFP.html

Justin
0
 

Author Comment

by:Sam_Rendell
ID: 33500500
Thanks that looks like the kind of solution I had in mind, I'll give that a good look.

As for moving the mailboxes from B to A is my only option creating new linked mailboxes in A and then moving the emails manually?

Cheers,
S.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500518
If you wanted to do a total migration, I know of some tools to automate the process.  Because you only want to do a partial migration, I am unaware of any method other than a manual move (exmerge, for example).
0
 

Author Comment

by:Sam_Rendell
ID: 33500571
Okidoki thanks for your help.

S.
0

Featured Post

Creating Instructional Tutorials  

For Any Use & On Any Platform

Contextual Guidance at the moment of need helps your employees/users adopt software o& achieve even the most complex tasks instantly. Boost knowledge retention, software adoption & employee engagement with easy solution.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question