Exchange 2003 to 2010 migration questions

1. We are using a smart host/email spam appliance for all outgoing & external incoming mail. Do I need to configure the default received connector to allow for Anonymous? Or can I just leave it alone?


2. This maybe a result of the existing 2003 server but I notice that we have a send connector already and it’s pointed to our email spam appliance. Do I have to create another send connector as we have a number of distribution lists that contain external SMTP addresses that our users send mail to. We also have some servers email alerts to internal IT staff via Exchange. Can we just use the existing connector?
 

3. In Hub transport Client & Default receive connectors, “networks” setting, I assume this means the Nic adapter on the hub transport server that will be allowed to receive email. And not which remote IP address the hub server receive email from. Meaning if i have 1 nic card and my nic is 192.168.92.x, it would receive email from that IP. And it won't matter what the source ip is.

4. Do I need to create a new email address policy or can I work with the 2 that’s been created by default from the migration?

5. I don’t use ISA or TMG 2010 but I do use a web/spam appliance to filter mail, do I need to change the authentication properties for owa web app or can I leave it as default?
iamuserAsked:
Who is Participating?
 
AkhaterCommented:
1. We are using a smart host/email spam appliance for all outgoing & external incoming mail. Do I need to configure the default received connector to allow for Anonymous? Or can I just leave it alone?

it needs anonymous

2. This maybe a result of the existing 2003 server but I notice that we have a send connector already and it’s pointed to our email spam appliance. Do I have to create another send connector as we have a number of distribution lists that contain external SMTP addresses that our users send mail to. We also have some servers email alerts to internal IT staff via Exchange. Can we just use the existing connector?

Yes the connector you are seeing is the one of 2003, if you check it will have no source server.
Yes you will need to create another send connector with 2010 as source server


4. Do I need to create a new email address policy or can I work with the 2 that’s been created by default from the migration?
you don't need to create a new one

5. I don’t use ISA or TMG 2010 but I do use a web/spam appliance to filter mail, do I need to change the authentication properties for owa web app or can I leave it as default?

Leave it as default

0
 
iamuserAuthor Commented:
2. This maybe a result of the existing 2003 server but I notice that we have a send connector already and it’s pointed to our email spam appliance. Do I have to create another send connector as we have a number of distribution lists that contain external SMTP addresses that our users send mail to. We also have some servers email alerts to internal IT staff via Exchange. Can we just use the existing connector?

Yes the connector you are seeing is the one of 2003, if you check it will have no source server.
Yes you will need to create another send connector with 2010 as source server

You are right there is no source server but it looks like i have the option to add in a source server. And it let's me do it. Can I  just add in the 2010 server as the source server or is this one used for 2003 only?
0
Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

 
AkhaterCommented:
No don't do this because they are in different routing groups, you should create another one for exchange 2010
0
 
iamuserAuthor Commented:
Active Sync

3. Enable Integrated Windows authentication on the Microsoft-Server-ActiveSync virtual directory on the Exchange 2003 back-end server. This allows the Exchange 2010 Client Access server and the Exchange 2003 back-end server to communicate using Kerberos authentication.

Install the hotfix located here, and then use Exchange System Manager to adjust the authentication settings of the Exchange ActiveSync virtual directory

Don’t use IIS Manager to change the authentication setting on ActiveSync Virtual Directory

Do the 2 servers have to communicate using kerberos? Can they work on basic authentication?

I can use ESM on exchange 2010 to probably change the authentication setting for active sync but  server manager in 2003 doesnt' allow for such a feature. Not that I can find
0
 
AkhaterCommented:
proxying always use kerberos and no you cannot make use basit authentication

You do should do this on your 2003 and not on 2010
0
 
iamuserAuthor Commented:
So change authentication to "integrated windows" on 2003 Back-end servers only.

The acess settings for the microsoft-server-active sync properties are all grey out on my backend exchange server. I can't access it to change it

0
 
AkhaterConnect With a Mentor Commented:
So change authentication to "integrated windows" on 2003 Back-end servers only.
yes and don't change it just add integrated authentication and leave basic


The acess settings for the microsoft-server-active sync properties are all grey out on my backend exchange server. I can't access it to change it

yes you need a hotfix http://support.microsoft.com/kb/937031
0
 
iamuserAuthor Commented:
thanks, I thought you did the patch after the change.
0
 
AkhaterCommented:
actually you need it for the change :)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.