Solved

Exchange 2010 with multiple domains

Posted on 2010-09-16
7
780 Views
Last Modified: 2012-05-10
We have a domain that spans several different physical locations with a few hundred users and client machines. We were set to upgrade our Exchange 2003 server to Exchange 2010 when we learned we could not move forward as scheduled because the domain name was not acceptable to Exchange 2010 because it contains an underscore, such as DOMAIN_1 (this was set up by a previous IT staff and we wanted to change it at some point.)

Instead of delaying the project and creating a lot of chaos by trying to rename the entire domain in a hurry, we came up with the following idea:  create a new domain controller for the new domain name we want to use (DOMAIN2) and set up two-way trusts between DOMAIN2 and DOMAIN_1. Then we can build the new Exchange 2010 server on a member server in DOMAIN2, import the mailboxes from the exchange server on DOMAIN_1.  If users can authenticate across both domains, I think this should work.

Can anyone think of any reasons why it wouldn't, or other trouble we might hit along the way? Any 'gotchas' in this scenario?

0
Comment
Question by:Ad-Apex
7 Comments
 
LVL 31

Accepted Solution

by:
Justin Owens earned 250 total points
ID: 33691486
An Exchange mailbox must be linked to an AD Account.  Your AD account must have a password.  You may run into issues due to the fact that users have to either 1) maintain two separate accounts or 2) keep their passwords in "sync" so that they don't get a challenge/response every time they access their mailboxes.  Remember that Outlook uses the default user's credentials.  You, as an administrator, could grant the user's original AD Account rights to the new account's mailbox, but that would create a tremendous overhead for administration.  

Honestly, my advice is to delay the email upgrade for a week or two and just rename your production domain to get rid of the Underscore.  Here is a good overview of this process:

http://www.petri.co.il/windows_2003_domain_rename.htm

Justin
0
 
LVL 11

Expert Comment

by:willettmeister
ID: 33691516
YOu will need to set up a connector between the exchange boxes so that mail can route from one to the other while you are in the process of migration your users.  
0
 

Expert Comment

by:pawanopensource
ID: 33691548
why dont u go for zimbra.
0
NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

 
LVL 49

Expert Comment

by:Akhater
ID: 33692204
your scenario makes perfect sense you can do it you don't even need a trust between them
0
 
LVL 11

Assisted Solution

by:JuusoConnecta
JuusoConnecta earned 250 total points
ID: 33715793
Why doesnt he need a two-way trust between them ? Are you trying to get the man fired ?

If hes building a new domain within the same ROOT domain it should for since the new child domain till resides within the Exchange Organization.

If its a new domain in another forest or a new root domain a two-trust is necessry for several reasons. External ip addresses to exchange server, MX records, ULTRAdns ?

All of those need to be reconfigured if he doesnt have a two-way trust.


Some help along the way for you Apex.
Right now you have an organization and your exchange server works fine. If your building a new domain into your current domain the exchange server install will become a part of your current Exchange Organization. You should be able to run the migration thru the GUI of Exchange 2010 (exchange management shell).
Remember to repoint your mx records to your new exchange server before unplugging the old one

If your build a whole new domain in another forest or if its a new root domain you will face a whole different scenario. You will need the following:
1. Two-way trust between the domains
2. Send Receive Connectors between the Exchange servers
3. A routing connector, Smart Host or another external ip address (for exchange 2010 to route traffic to the internet)
4. For the migration I would suggest using the Script release from Microsoft called "PrepareMoveRequest.PS1"

Let me know what your organization build will look like (talking about the domain structure)

regards
0
 

Author Comment

by:Ad-Apex
ID: 33853148
Hi everyone,
Thanks for the comments. There were two ways to progress with this project: rename the domain and put the Exchange upgrade on hold, or try to install exchange on a new domain that was accessible to the old one.
 I decided to rename the domain first as this is something that needs to be done eventually regardless of the exchange server's upgrade.  I will then upgrade the exchange server in the renamed domain without the additional layer of complexity the reverse would involve.
JuusoConnecta and DrUltima had the two responses that best represented what each path would involve. I have split the points between the two.
Regards,
Ad-Apex
0
 

Author Closing Comment

by:Ad-Apex
ID: 33853166
Thanks for the assistance.
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question