Exchange 2010 trying to Move Offline Address Book

When we we try to move the offline address book over to the new exchange farm from the old one, we are getting an error:

Active Directory operation failed on AD1.domain.local. This error is not retriable. Additional information: Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150A48, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

The user has insufficient access rights.

Echange Management Shell command attempted:
move-OfflineAddressBook -Identity "\xxxxxx OAB' -Server 'xchange' Move OAB error
We have dug around a lot, any thoughts?
Who is Participating?
viveksahuConnect With a Mentor Commented:
You can use the Exchange Management Console to perform this task.

    In the Console tree, click Toolbox.
    In the Result pane, double-click Public Folder Management Console. The Public Folder Management Console appears.
    In the public folder tree, click or expand Default Public Folders, and then select the parent public folder of the public folder that you want to move to Exchange 2010. Note: To configure replication for the offline address book (OAB) or for Schedule+ free/ busy information, expand System Public Folders, and then click OFFLINE ADDRESS BOOK or SCHEDULE+ FREE BUSY.
    In the Result pane, right-click the public folder you want to replicate to Exchange 2010 and select Properties.
    On the Replication tab, click Add to select an Exchange 2010 public folder database and then click OK.
    By default, Exchange uses the replication schedule configured for the public folder database. To create a custom replication schedule for the public folder, clear the Use public folder database replication schedule check box and select one of the settings in the list.
    To create a customized schedule, click Customize.
    To set the schedule, click the time grid in the Schedule dialog box. Public folder replication will run during the time slots that you specify.
    Click OK to close the Schedule dialog box.
    To specify the age limit for items in this public folder, type the number of days in the Local replica age limit (days) box. Items that have reached the age limit are deleted.
Maen Abu-TabanjehNetwork Administrator, Network ConsultantCommented:
are login using administrator account??
open active directory users and computers ..
view -> advanced features .
locate users -> right click on administrator (or the user name that you currently logged in to exchange)
right click-> properties ->security tab -> click advanced -> tick include inheritable permissions from this objects parent.

then try to move again
Phase2Connect With a Mentor Author Commented:
another way ..

Run adsitedit
Connect to Configuration Name Space
Expand to : Services  > Microsoft Exchange > Address List Container > Offline Address Book > Select the OAB and Properties
Security Tab > Advanced and select “Inherit Permissions from parent”
Phase2Author Commented:
This solved the issue of getting it moved over, problem is users are still not able to see their GAL
Maen Abu-TabanjehNetwork Administrator, Network ConsultantCommented:
just for other people ... the solution by author :

"This solved the issue of getting it moved over, problem is users are still not able to see their GAL"

good luck
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.