Solved

Understanding two forest domains for Exchange

Posted on 2011-03-22
1
590 Views
Last Modified: 2012-05-11
Hello,

I have a cusotmer who has two Exchange servers residing in two forests. I need to understand this so I can offer him my solution. He has two forests. One forest has Exchange 2003 and the other forest has Exchange 2010. He wants to migrate users from the Exchange 2003 forest to the Exchange 2010 forest. I can do that, but I don't understand the forest difference and how they can have two Exchange servers sharing the same active directory yet residing in two different forests.

So, I need to setup a forest in my domain to test this out. Currently, I have one domain and I assume that this is a forest. What do I need to do to setup a second forest without messing up my current forest e.g. domain?

Also, can I still manage all users in Active Directory and in one location or do I  need to have two separate sets of users? I dont' understand forests, or even the IP considerations if there needs to be one. I would appreciate the feedback so I can setup an Exchange 2003 and Exchange 2010 in my domain and in two forests so that I can see what it will take to migrate users from one forest to another.

I hope I haven't bitten off more than I can chew lol. Migrating email is the easy part. Permissions is always the obstacle.

Thanks,
John


By the way, I am using Windows Server 2003, but I expect a mixture of 2003 and 2008.
0
Comment
Question by:jhieb
1 Comment
 
LVL 8

Accepted Solution

by:
ActiveDirectoryman earned 500 total points
ID: 35195073

Well, you can only have one exchange organization per forest unless you are using coexistence.

What do you mean that they are sharing the same active directory?    

If you have two active directory forest you are not sharing the same active directory because the schemas are different. It is not the same database.  You can setup trust between forests and users can login between forests if thats what you mean.  

0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question