Adding a new FFL 2012 trusted domain to a Exchange 2007 domain with a FFL 2003 domain

My organization has decided to create a new forrest and domain.  We will be creating a two way trust between the current 2003 forrest & domain and the new 2012 forrest & domain.  For now, only a few of our users will
log into the new domain, but we still want them to be able to access their email in the 2003 domain and have their emails come from the 2003 domain.   There are no Exchange servers in the new domain, users will just authenticate to the
new domain.
Besides creating the accepted domain policy and new email policy, is there anything else that will be required?
Thanks in advance
MikeV
Thanks, MikeV MCSE 2012

In Exchange 2003 there is no "accepted domain policy" or "email policy", just recipient policy.  And you only need to do that if you're adding a new e-mail domain.  Further, in many cases you can probably just modify the existing policy.
A one-way trust with the server domain trusting the account domain is all that should be necessary.  You will have to grant full mailbox rights and send as rights on each mailbox to the corresponding user account.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
We added the trust, but Exchange doesn't see the new domain.  I've tried both the EMC and powershell (add-mailboxpermission useralias -user"newdomain\alias" accessrights-fullaccess)  error says "user or group not found please make sure you
have typed it correctly"
What else needs to be done for Exchange to see the new domain and users?
Thanks, MikeV MCSE 2012

Similar Messages

  • BPA shows domain prepped for Exchange 2007 SP1 after SP3 install

    Hello,
    I have a Client with a domain that is at 2003 domain functional level and 2000 forest level.
    The client had Exchange 2007 SP1 and I have just upgraded it to SP3. There is one CAS, one Hub Transport, and one Mailbox Server (All three had Exchange 2007 SP1).
    The domain and forest were prepped earlier by someone else and when I ran the installation program, it didn't pop up any errors on any of the servers.
    The upgrade to SP3 is in preperation to Exchange 2010. Everything is working ok. I have checked:
    1) In ADSIEdit, Exchange System Objects properties: Object Version =11221.
    2) In ADSIEdit, Services>Microsoft Exchange>Organization: Object Version =11222
    3) In ADSIEdit, RangeUpper value of ms-Exch-Schema-Version-Pt object = 14625
    However, When I run the Exchange BPA, it reports that the domain is prepped for Exchange Server 2007 Service Pack 1 (In informational items). This is an informational item and not a warning or alert. However, I am concerned. Is this normal, and will it affect
    the migration to Exchange 2010?
    Thanks,
    HA

    Hello Ha20,
    Based on my experience, it will not affect the migration. However, it’s recommended to prepare the schema again to avoid any potential issues.
    Thanks,
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Simon Wu
    TechNet Community Support

  • How to create new storage group and mailbox database on exchange 2007 CCR

    Hi, Our Environment:
    Exchange 2007 SP3 CCR.
    Now I want to create a new storage group with edb file and log files on the new drive.
    My plan is as below:
    Once we have new drive ready on both active node and passive node,
    1): Create new storage group with log files for this new storage group on other new drive from Active Node.
    2): Create new mailbox database under this newly created storage group with the DB file on the new drive from active node.
    My question is:
    1): Do I need to perform above steps from active node only? or Do I need to do it from both active node and passive node?
    2): How many storage groups can we create on one Exchange 2007 Enterprise server, we already have 25 SGs in place.
    Thanks in advance.

    Hi,
    Here are my answers you can refer to:
    1. We can just create new storage group on the active node. And it’ll be replicated to the passive node.
    We can use the following command in EMS to verify the new Storage Group is being replicated to the passive node:
    Get-StorageGroupCopyStatus "Second Storage Group" | Select SummaryCopyStatus,CCRTargetNode
    http://exchangepedia.com/blog/2007/08/how-to-create-new-storage-group-in-ccr.html
    2. For Exchange 2007 enterprise version, we can have up to 50 storage groups:
    http://www.computerperformance.co.uk/exchange2007/exchange2007_storage_groups.htm
    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make
    sure that you completely understand the risk before retrieving any suggestions from the above link.
    If you have any question, please feel free to let me know.
    Thanks,
    Angela Shi
    TechNet Community Support

  • Adding a new Operating System to the list of OS'es returned with Get-SCOperatingSystem

    Is it possible to add a new Operating System to the list of OS'es that's returned by the Get-SCOperatingSystem PowerShell cmdlet?
    I have a few Linux distributions that will run fine under Hyper-V with the latest LIS improvements, but I would like to create a new entry for that said distributions as I would like it to display the correct name as the end-user is using Windows Azure Pack
    to access the virtual machines. 
    All posted advice may not be all that accurate. As always, test it in a lab before you try my advice! Best of all, the documentation is your friend.

    Never mind, I think I hacked up my own solution to the question:
    USE [VirtualManagerDB]
    GO
    INSERT INTO [dbo].[tbl_IL_OS]
    ([OSId]
    ,[Name]
    ,[Description]
    ,[Architecture]
    ,[OSFlags]
    ,[VMWareGuestId]
    ,[OSType])
    VALUES
    ('EBAB54C0-A9FA-4A3F-A21C-94775B96A6E5' /* Generate UUID */
    ,'Debian GNU/Linux 6 (64-bit)' /* Limited to 64 Chars */
    ,'Debian GNU/Linux 6 (64-bit)' /* Longer description of Linux Distro */
    ,'amd64' /* Use x86 for i386, amd64 for x86_64 */
    ,'28' /* This remains constant */
    ,'otherLinux64Guest' /* This is meant for VMware, go lookup the VMX spec files for this value */
    ,'1') /* Leave this at one, that's what the other OSes looked like */
    GO
    All posted advice may not be all that accurate. As always, test it in a lab before you try my advice! Best of all, the documentation is your friend.

  • Mail Crashing when adding exchange 2007 account with SL

    I tried adding my work exchange to my mail which I currently have gmail and mobileme configured. I enter my info and credentials, accept the certificate (unsigned), and mail crashes immediately.
    I tried moving out the plist and /Library/Mail folded to start from scratch, but I get the same result.
    This did work with my exchange account on another machine (my Mac Pro) with the last beta. I have not had a chance to upgrade it yet. Anyone else have similar problems? Any other ideas to try?

    I was able to figure out a work around. In order to get out of the automatic discovery of my mail server information, I started over at the new account wizard and put in a bogus email domain. Since the wizard did not recognize it, it prompted me to enter the server type and the rest of the settings. Once I entered them manually I was able to add the account. Hopefully there will be a forthcoming permanent fix somewhere down the road.

  • Active Directory: One Way Trust from NT Domain to 2003 Domain being upgraded to 2012 R2

    We have an old legacy NT 4 domain that is slowly being decommissioned. (Slowly is the key word) Currently there is a one way External Trust between those NT 4 domains and a child domain that is at 2003 functionality. We are in the middle of upgrading
    those child domain and the root domain to 2012 R2.  My only concern right now and I can't seem to find concert proof either way, but will that external one way trust break when upgrading the forest and domain functionality to 2012 R2 once we
    have all our DC's upgraded?  I have read articles on how to get that trust to work in a 2008 R2 domain and of course it is working with the existing 2003 domain.
    In theory the trust should break, correct?  However, I know there are some security changes among other things in 2012 that may or may not work. 
    Kristopher Turner | Not the brightest bulb but by far not the dimmest bulb.

    Yes.  We are working with the client to migrate any dependencies off these 3 NT legacy domains. We will be able to decommission 2 of the 3 without any issues. However, they still have an old NT box running SQL 6.5 databases for a application still in
    production. Yes, they are very aware that NT isn't supported, that that version of SQL isn't supported, and that this will hold up their upgrade.
    Our plans for them will be to deploy all new Windows Server 2012 R2 domain controllers but keep the domain and the forest functionality at 2003 in order to support that final NT Legacy domain until they can get that application migrated.
    Once that NT domain is decommissioned then we can raise the functionality of the rest of their domains from 2003 to 2012 R2.
    Kristopher Turner | Not the brightest bulb but by far not the dimmest bulb.

  • Application Path Member will be deleted after adding a new Application Path Member in another Application Path List

    I expirienced the behaviour that the first item in the Application Path Member from a Application Path List will be deleted as far as the first item in the Application Path Member List will be selected in anather Application Path List without saving. This is according to severals peripherals as well.
    Example:
    Configuration Manager > Application Path List
    In the Application Path List "McalMediaRouting" the following Application Path Members are configured.
    For this example, the first Media Routing Domain for the Peripheral is Chat.
    Now, adding a new Application Path Member for the Application Path List "SiebelMediaRouting" with a new Media Routing Domain, which is not yet assigned to a Application Path List.
    Select the same Peripheral PG1A_CCM and choose the new MediaRouting from the list. At this point the Application Path Memeber with the Media Routing Domain "Chat" will be deleted in the Application Path List "McalMediaRouting". This will be deleted even without saving it.
    UCCE Version 9.0.2 used.
    Is this per design or is this a defect?
    Kind regards
    David

    HI
    add that fileds in the all locations where you need it like
    in internal table declaration , write statement , select statement
    these are the main areas where you have to add that 2 fileds

  • New AD 2012 setup, integrating with existing 2008 setup

    I would like to setup AD for a client.
    I currently have a Windows 2008 file server with a single local user that everyone uses to connect, wide open permissions, no groups, very basic and simple setup.
    I have created two new test 2012 R2 servers for AD, I can join my workstation to the Domain, login with an AD user and mount the shared drive from the fileserver, create files etc, everything works.
    When I created the domain I selected 2012 functional level.
    Would it be best to keep everything at the 2012 level and upgrade the fileserver to 2012 and then join the domain?
    Or redo the AD setup and make it compatible with 2008 and 2012 servers, then I can just join the server to the domain.
    I am hesitant to touch the fileserver, not sure how well upgrading from 2008 to 2012 works? 
    The main reason for setting up AD is for group policy, permissions on the server, setting up groups etc.
    Thanks for any advice.

    The functional level only apply to DCs (e.g. you can only have Windows Server 2012 DCs or later) - So you can go ahead and join the file server to the domain just as you did with the workstation.
    Enfo Zipper
    Christoffer Andersson – Principal Advisor
    http://blogs.chrisse.se - Directory Services Blog

  • Happy New Year 2012

    Hi All,
    Wish you Happy & Prosperous New year 2012.
    Thanks for all your Help & support with OTN. Keep Rocking :)
    Thanks.

    I was just going to post the same thread and you beat me on it :) . Wish you and the entire Oracle community, to Justin and the entire OTN team, a very happy and prosperous 2012! May this year brings for all us lots of joy, success, happiness and good health and of course, we all may learn more and more from the Guru's of our community like Jonathan Lewis, Charles Hooper, Tom Kyte, Hans Forbrich , Hemant Chitale (and a long list of such esteemed people follows) and become more and more aware about this awesome product-Oracle database.
    Happy new year to all once again!
    With best wishes and regards
    Aman....

  • SBS2008: Move email from Exchange 2007 to new server with Exchange 2013

    We have an old server (SBS2008) and plan to buy a new server with (Server 2012). I need to move all the exchange emails, contacts & calendars to the new server. We will no longer use the old server. 
    Is there a document or migration tool that will help me understand how to move this data form the old exchange server to the new one? 
    Old Server:
    SBS2008 running Exchange 2007
    New Server:
    Server 2012
    Exchange 2013
    Any help is appreciated!

    Hi Dave,
    It can be done, and as Larry suggested you will consider two Server 2012 installs in order to achieve an environment that looks like your current SBS roles; Exchange 2013 on an Active Directory controller isn't a good long-term solution (SBS did this for
    you in the past).
    For your size operation, a virtual server host, with a Windows Server 2012 license, and two virtual machines would probably be a suitable design model.  In this manner, you have Server 2012 license that permits 1 +2 licenses (one host for virtualization,
    up to 2 Virtual Machines on same host).
    There's no migration tool. That comes with experience and usually trial and error. You earn the skills in this migration path, and for the average SBS support person you should plan on spending 3x (or more) your efforts estimate in hours planning your migration. 
    You can find a recommended migration path at this link to give you an idea of the steps, but its not exactly point by point going to cover you off for an sbs2008 to server 2012 w/exchange 2013 migration.  But the high points are in here. If it looks
    like something you would be comfortable with then you should research more.
    http://blogs.technet.com/b/infratalks/archive/2012/09/07/transition-from-small-business-server-to-standard-windows-server.aspx
    Specific around integrating Exchange 2013 into an Exchange 2007 environment, guidance for that can be found here:
    http://technet.microsoft.com/en-us/library/jj898582(v=exchg.150).aspx
    If that looks like something beyond your comfort level, then you might consider building a new 2012 server with Exchange 2013 environment out as new, manually export your exchange 2007 mailbox contents (to PST) and then import them into the new mail server,
    and migrate your workstations out of old domain into new domain.  Whether this is more or less work at your workstation count is dependent upon a lot of variables.
    If you have more questions about the process, update the thread and we'll try to assist.
    Hopefully this info answered your original question.
    Cheers,
    -Jason
    Jason Miller B.Comm (Hons), MCSA, MCITP, Microsoft MVP

  • Error while installing 2nd exchange 2007 on our domain

    We are installing the 2nd exchange 2007 on our domain - for obvious reasons of not able to upgrage the exisitng version to SP3 RU10 - as the server crashes everytime we do an update.
    So we thought we will setup a second new exchange 2007 server with all HT MB & CAS & update it fully and move the mailboxes etc.
    1st Exchange Server: EXCH01
    2nd Exchange Server: EXCH02
    We are doing a fresh install on a fresh vmware machine
    OS: Windows Server Enterprise Service Pack 2
    Exchange 2007 Service Pack 1
    During the hub transport installation part we ran into an error
    Exchange Server component Hub Transport Role failed. 
    Error: Error:
    Property IsProvisionedServer cannot be set on this object because it requires the object to have version 0.1 (8.0.535.0) or later. Current version of the object is 0.0 (6.5.6500.0).
    Log Name: Application
    Source: MSExchangeSetup
    Event ID: 1002
    Now I am unable to uninstall the application as well, even while uninstalling the same error is thrown.
    Also, when we open the EMC on 1st exchange server we get an error saying
    "Warning:
    Object PGCMAIL01 has been corrupted and it is in an inconsistent state. The following validation errors have occurred:
    Warning:
    Cannot calculate value of property "AdminDisplayVersion": "SerialNumber property is not present.".

    Hi,
    According to your description, I understand that failed install second Exchange 2007 with error “Property IsProvisionedServer cannot be set on this object because it requires the object to have version 0.1 (8.0.535.0) or later. Current version of the object
    is 0.0 (6.5.6500.0).”.
    If I misunderstand your concern, please do not hesitate to let me know.
    Which current Exchange version are you used in your environment?
    I want to double confirm whether run Setup /PrepareAD and Setup /PrepareDomain to complete the prerequisite preparation. More details about Preparing Active Directory for Exchange 2007, for your reference:
    https://technet.microsoft.com/en-us/library/bb288907(v=exchg.80).aspx. If not, please run it and try again.
    Besides, we can use ADSIEdit to double check the version and get more clear-cut error message in Exchange Setup log.
    Thanks
    Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
    Allen Wang
    TechNet Community Support

  • New Exchange 2013 CAS server in existing Exchange 2007 Organization

    Dear Friends,
    We have exchange 2007 SP3 with CU13 installed with single copy cluster for database and 1 OWA server for CAS/HT. We will migrate from current to Exchange 2013SP1. As we want to have HA, we have installed 2 new Exchange 2013 SP1 CAS server on widnows 2012
    R2 after preparing our organisation for Exchange 2013. The setup went smooth without any error and successfully installed CAS with management tools. After installation it ask to reboot the server which we did. Now after reboot, we are not able to run Exchange
    Management Sell. It never connects to the new server. In our old 2007 EMS also doesn't list any exchange 2013 server. We are also not able to connect to new CAS servers with below URL:
    https://servername/ecp/?ExchClientVer=15
    Its says site under maintenance. Please advise what to check. We were thinking of deploying CAS 1st and make it co-exist with Exchange 2007 before deploying Exchange 2013 mailbox server which will be setup in DAG. What are we doing wrong.
    Thanks in advance!!

    Dear Friends,
    We have exchange 2007 SP3 with CU13 installed with single copy cluster for database and 1 OWA server for CAS/HT. We will migrate from current to Exchange 2013SP1. As we want to have HA, we have installed 2 new Exchange 2013 SP1 CAS server on widnows 2012
    R2 after preparing our organisation for Exchange 2013. The setup went smooth without any error and successfully installed CAS with management tools. After installation it ask to reboot the server which we did. Now after reboot, we are not able to run Exchange
    Management Sell. It never connects to the new server. In our old 2007 EMS also doesn't list any exchange 2013 server. We are also not able to connect to new CAS servers with below URL:
    https://servername/ecp/?ExchClientVer=15
    Its says site under maintenance. Please advise what to check. We were thinking of deploying CAS 1st and make it co-exist with Exchange 2007 before deploying Exchange 2013 mailbox server which will be setup in DAG. What are we doing wrong.
    Thanks in advance!!
    If you have only the 2013 CAS installed and not the mailbox role, then nothing will really work. Remember, in 2013, the mailbox role does all the work, the CAS is simply a proxy for the most part.
    Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

  • Connect Outlook to Exchange 2007 in separate domain

    As part of a merger, we've been asked to discontinue our Exchange 2010 email environment.  We would need to connect up our current email users (over a point to point connection with firewall in between) to the other organizations Exchange 2007 server
    with completely new email accounts/addresses, via Outlook client.  I'm wondering if this is even possible.  Can our Outlook client talk to an Exchange 2007 server if Outlook exists in a native Exchange 2010 environment?

    Yes you certainly should be able to do that. So long as you're able to connect to the remote Exchange server then you should simply be prompted for login details to access it, since obviously your local login details won't work, at which point you simply
    enter the login details provided for the remote exchange server. Obviously you also need to add the remote domain before the username, eg <domain>\<username> to force it to authenticate with that domain login rather than it assuming you're logging
    in using a login from your existing domain.
    We've got several clients who have their mailboxes hosted on our exchange servers, most of which are running in domain environments, and in fact a few of which have old Exchange servers still running on their networks when we first set them up.

  • Does Oracle 10G R2 support installation on Windows 2003 Domain Controller?

    Does Oracle 10g R2 support installation on Windows 2003 Domain Controller? I remember that 10g R1 had issues with the DC? Is it still the case. Does it work now?
    Any help is appreciated.
    Regards,
    Raghav

    We have Oracle 10g R2 running on a Windows 2003 domain controller. It was not a domain controller when Oracle was installed. The domain was created after installation. (I don't recommend that procedure. I spent a long day fixing the installation after they configured the domain.) If Oracle is unhappy with being on a domain controller, it has not shown it yet.

  • Recovering Domain Controller in Exchange 2010 environment.

    Hi Friends,
    We have one windows 2008 Domain controller & one Exchange 2010 server with all role installed, My problem is if My domain controller failed , how  i can recover it?
    Is there ant step for domain controller recovery in Exchange 2010 Environment.?
    Thanks & regards,
    Pradeep

    Hi Pradeep,
    Sorry to hear that... The only option you have is to do non-authoritative restore of Active Directory...
    From Exchange prospective, once you do restore from an old backup whatever changes you made in Exchange since then won't be there as Exchange keeps all the settings in active directory, for example if you have created users then you would need to recreate
    them and attach their mailbox to back to users...
    Blog |
    Get Your Exchange Powershell Tip of the Day from here

Maybe you are looking for