I am currently working on a network that has 2 domains within the forest. I recently implemented an Exchange 2010 server to replace the Exchange 2003 server. These servers hold the mailboxes for users on both domains.
I was able to move the mailboxes from 2003 to 2010 for all the users on the main domain. However, when I attempt to move the mailboxes from the sub-domain, I get the following error:
Active directory failed on server1. additional information: insufficient access rights to perform this operation:
Active directory response: 00002098: SecErr: DSID-03150A48. problem 4003 (INSUFF_ACCESS_RIGHTS). Data 0
the user has insufficient access rights
This occurs whether I am logged into the Exchange 2010 server as the administrator of the top domain or as the administrator of the sub domain.
What rights do I need to assign and to which administrator user?