?
Solved

How to maintain GAL access to original domain for new linked mailboxes in second domain.

Posted on 2010-08-20
8
Medium Priority
?
1,098 Views
Last Modified: 2012-05-10
Hi,

Bit of a funny one, I am going to start hosting mailboxes for users on a child companies domain.

Just so you know I already have a two way domain trust in place.

I have two questions,

Firstly, is it necessary to create a linked mailbox for each user in our domain then transfer mail somehow from the original mailbox to the linked or can I migrate a mailbox from their domain to ours then grant access to the original NT account in the their domain?

Secondly, given that I would like to perform a gradual migration is there a way that the new linked/migrated mailboxes in our domain can still have access to the GAL in their original domain?

Hope that makes sense, please don't ask why we are only moving mailboxes and not just migrating users to the new domain, it wasn't my idea.

Many thanks,
Sam.
0
Comment
Question by:Sam_Rendell
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33487204
Mailboxes are tied directly to AD accounts.  You cannot have a mailbox without an AD account.  If you want the mailbox in your new domain, you must have an AD account in your new domain.  If your trust is correctly set up, you should be able to grant users in domain A access to mailboxes in domain B.  

You can set up the new mailbox in domain B (child domain) and then use Outlook to add a profile for outlook pointing to that.  For that matter, you could do that without the trust, if you have your users maintain passwords in both domains.

How many users are you talking about migrating on your initial wave?  Do you already have the new domain set up to receive and send mail?
0
 

Author Comment

by:Sam_Rendell
ID: 33498908
I don't think you got my meaning.

There are already two domains in existence. Both have exchange organisations both have mailboxes. I want to migrate the mailboxes from domain a to domain b but leave user accounts on domain b. I know I can create linked mailboxes in domain a and grant permission to users in domain b. But then I will have to do something nasty like PST emails from mailboxes on domain b and reimport them into the linked boxes on domain a.

0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500327
If you want to migrate your mailboxes from DomainA to DomainB and then use the user accounts on DomainB, why do you need to keep DomainA accounts or mailboxes?  What do you want the picture to look like when you are finished with your project?
0
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

 

Author Comment

by:Sam_Rendell
ID: 33500347
Exchange in Domain A will have all mailboxes. Those that moved from Domain B are still used by user accounts in domain B.

During the transition some domain B users will have mailboxes on both hence the need for access to both GALs.
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 2000 total points
ID: 33500408
You are going to have issues with this idea.  You cannot open a primary Exchange profile but from one mailbox at a time.  So, if your users are logging into DomainB AD account and mailbox, that is the GAL they will see.  Exchange cannot natively pull its GAL from anything outside the forest.  If I am reading correctly, you want DomainB users to see DomainA mailboxes in their GAL.  Do you want ALL DomainB users to see DomainA's GAL, or just the users who exist in both domains?  Your easiest solution would be to do a GAL sync.  You can use MS's Identity Integration Feature Pack to accomplish this:

http://www.msexchange.org/tutorials/GAL-Sync-Identity-Integration-Feature-Pack-IIFP.html

Justin
0
 

Author Comment

by:Sam_Rendell
ID: 33500500
Thanks that looks like the kind of solution I had in mind, I'll give that a good look.

As for moving the mailboxes from B to A is my only option creating new linked mailboxes in A and then moving the emails manually?

Cheers,
S.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 33500518
If you wanted to do a total migration, I know of some tools to automate the process.  Because you only want to do a partial migration, I am unaware of any method other than a manual move (exmerge, for example).
0
 

Author Comment

by:Sam_Rendell
ID: 33500571
Okidoki thanks for your help.

S.
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question