exchange 2007
I have EXCHNAGE 2007 ENVIRONMENT
we have resource forest setup where mail.lan is exchange forest linked to another AD account forest. exchange mailboxes are linked mailboxes .
my boss asked me below to find out , any guesses what is he trying to ask and where should I find it
"how are the users in the mail.lan domain linked back to their primary domain? Which attribute?"
we have resource forest setup where mail.lan is exchange forest linked to another AD account forest. exchange mailboxes are linked mailboxes .
my boss asked me below to find out , any guesses what is he trying to ask and where should I find it
"how are the users in the mail.lan domain linked back to their primary domain? Which attribute?"
The info you are looking for is here
http://hasslauer.com/blog/?p=143
What he wants to know is the relationship between the A user in the account forest and the AD user in the resource forest
http://hasslauer.com/blog/?p=143
What he wants to know is the relationship between the A user in the account forest and the AD user in the resource forest
ASKER
cant I check the attribute of exchange users through GUI like mine is on disabled AD
like my properties
like my properties
Its the Sid mate, in the doc above its the AccountDomainSid
Did you read the article? Everything you need is there with screenshots
ASKER
I can see the commands clear, can you somehow enlarge it and send
I'm not the author of the article I don't have the screen shots
ASKER
or can you write in the scripts
ASKER
can t load AD module in Exchange management shell
man you lost me you asked about the linked properties and it is clearly written in the article i sent you
LinkedMasterAccount
msExchMasterAccountSid
and the SID of the user in the account forest is giving full permission on the mailbox in the resource forest
LinkedMasterAccount
msExchMasterAccountSid
and the SID of the user in the account forest is giving full permission on the mailbox in the resource forest
ASKER
I cant read the script properly from screen shot, can u put in text
ASKER
in EMS it says cant load any AD module
You don't need it
Get-Mailbox username | fl
Will show you the LinkedMasterAccount
And you can use ad users and computers for msExchMasterAccountSid as shown in the picture below
http://www.msexchange.org/img/upl/image0041141045519890.jpg
Picture taken from http://m.msexchange.org/articles-tutorials/exchange-server-2003/management-administration/Understanding-External-Associated-Account-Windows-Server-2003-Exchange-2003.html which shows you how to check the permissions too
Get-Mailbox username | fl
Will show you the LinkedMasterAccount
And you can use ad users and computers for msExchMasterAccountSid as shown in the picture below
http://www.msexchange.org/img/upl/image0041141045519890.jpg
Picture taken from http://m.msexchange.org/articles-tutorials/exchange-server-2003/management-administration/Understanding-External-Associated-Account-Windows-Server-2003-Exchange-2003.html which shows you how to check the permissions too
ASKER
I am seeing in attribute additor it is in hexa decimal
ASKER
akhater:
I see in attribute editor some hexadecimal figure, what should I give him
I see in attribute editor some hexadecimal figure, what should I give him
What are you trying to do?
You don't need to give him the sid
The attributes he asked for are
LinkedMasterAccount
msExchMasterAccountSid
These are the attributes their values will change for every user
The attributes he asked for are
LinkedMasterAccount
msExchMasterAccountSid
These are the attributes their values will change for every user
ASKER
he asked me below question
how are the users in the mail.lan domain linked back to their primary domain? Which attribute?"
I ran get-mailbox identity my name | ft name, linked master account I got the result
what attribute should I tell him
how are the users in the mail.lan domain linked back to their primary domain? Which attribute?"
I ran get-mailbox identity my name | ft name, linked master account I got the result
what attribute should I tell him
ASKER
so I should tell him
these are below
LinkedMasterAccount
msExchMasterAccountSid
am I correct?
these are below
LinkedMasterAccount
msExchMasterAccountSid
am I correct?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
msexchange master account sid points to account forest and not exchange forest
ASKER
2) The disabled account in the resource forest has an attribute called msExchMasterAccountSid that stores the value of the objectSid attribute of the corresponding user in the account forest.
ASKER
got it
Exactly
http://hasslauer.com/blog/?p=143
What he wants to know is the relationship between the A user in the account forest and the AD user in the resource forest