DHCP Migration - Cross Forest

Similar Messages

• Unable to migrate Cross Forest Exchange 2013 to Exchange 2013

  I am unable to migrate mailboxes from an on prem (same physical virtual host) to an on prem (same physical virtual host) cross forest. 
  MRSProxy is enabled on both the target and the source.. and a migration endpoint is enabled on the source. I can succesefuly prepare-moverequest on the target, but when I perform 
  PS] D:\Exchange\Scripts>New-MoveRequest -Identity [email protected] -Remote -TargetDatabase "DomainCorp" -RemoteGlobalCatalog
  ads-ad-01.domain.local -RemoteCredential $RemoteCredentials -TargetDeliveryDomain "domaincorp.local" -Remote
  HostName ads-exch-01domain.local
  The call to 'https://ads-exch-01.domain.local/EWS/mrsproxy.svc' failed. Error details: Could not establish trust
  relationship for the SSL/TLS secure channel with authority 'ads-exch-01.domain.local'. --> The underlying connection
  was closed: Could not establish trust relationship for the SSL/TLS secure channel. --> The remote certificate is
  invalid according to the validation procedure..
      + CategoryInfo          : NotSpecified: (:) [New-MoveRequest], RemoteTransientException
      + FullyQualifiedErrorId : [Server=ADS-EXCHCORP-01,RequestId=3f49d075-8110-48fd-8157-9b4d87921252,TimeStamp=5/1/201
     5 4:00:11 PM] [FailureCategory=Cmdlet-RemoteTransientException] EA6D7B2B,Microsoft.Exchange.Management.RecipientTa
    sks.NewMoveRequest
      + PSComputerName        : ads-exchcorp-01.domaincorp.local
  If I change remote hostname to exch.domain.com I get a different error message. 
  [PS] D:\Exchange\Scripts>New-MoveRequest -Identity [email protected] -Remote -TargetDatabase "domainCorp" -RemoteGlobalCatalog ads-ad-01.domain.local -RemoteCredential $RemoteCredentials -TargetDeliveryDomain
  "domaincorp.local" -Remote
  HostName exch.domain.com
  The call to 'https://exch.domain.com/EWS/mrsproxy.svc' timed out. Error details: The request channel timed out
  attempting to send after 00:00:07.9643241. Increase the timeout value passed to the call to Request or increase the
  SendTimeout value on the Binding. The time allotted to this operation may have been a portion of a longer timeout. -->
  The HTTP request to 'https://exch.domain.com/EWS/mrsproxy.svc' has exceeded the allotted timeout of
  00:00:07.9640000. The time allotted to this operation may have been a portion of a longer timeout. --> The operation
  has timed out
      + CategoryInfo          : NotSpecified: (:) [New-MoveRequest], RemoteTransientException
      + FullyQualifiedErrorId : [Server=ADS-EXCHCORP-01,RequestId=f5807f2d-c8d5-4fb3-86b3-a831cae92626,TimeStamp=5/1/201
     5 4:01:10 PM] [FailureCategory=Cmdlet-RemoteTransientException] F2700578,Microsoft.Exchange.Management.RecipientTa
    sks.NewMoveRequest
      + PSComputerName        : ads-exchcorp-01.domaincorp.local  
  I feel like I have been hitting my head on the desk for about a week now. 
  We Also should note that we exported the Wildcard cert from the source server and imported it into the target server. 

  Hello
  if open imported wildcard cert from mmc on source computer it show the cert is ok? not missing root cert?
  sorry my english

• Public Folder Migration Cross Forest

  Hello,
  We are in the middle of planning a cross forest migration from Exchange 2010 to Exchange 2013. 
  To give some context:
  We already have an Exchange 2013 environment complete with mailboxes, and public folders etc. We have a 2010 Exchange server in a different forest that we would like to migrate all existing mailboxes and public folders from to the Exchange 2013 forest. We will
  be keeping the domain/forest that currently contains 2010 so all mailboxes that will be moved will end up being linked mailboxes in the 2013 organization with the accounts held in the other forest. 
  One of the big unanswered questions remains around public folder access. During migration there will be a time when some users will be in the Exchange 2010 organization, and some will be in the Exchange 2013 organization. I have two main questions around this
  1. Is there any way possible that anyone can think of that the users moved to 2013 can access the public folders still on 2010?
  2. What is the best way to migrate the public folders over from 2010 to 2013? Do we have to create the public folders and permissions on 2013 before hand or do we use a 3rd party tool or other method to achieve this goal?

  Hi,
  To reduce needless trouble, I recommend migrate mailbox first and public folder second.
  However, public folder will works fine no matter where it located. If you experience an issue about user in Exchange 2013 mailbox cannot access Public Folder in Exchange 2010, please change the RPC authentication to NTML.
  More details about it, please refer to:
  https://social.technet.microsoft.com/Forums/exchange/en-US/3172435f-4c06-41b3-b7a7-937dc0160049/exchange-2013-users-unable-to-access-exchange-2007-public-folders?forum=exchangesvrdeploy
  Additional, step by step to migrate Public folder to Exchange 2013, for your reference:
  http://blogs.technet.com/b/meamcs/archive/2013/07/25/part-4-step-by-step-exchange-2007-to-2013-migration.aspx
  Thanks
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact [email protected]
  Allen Wang
  TechNet Community Support

• Migrating a mailbox cross forest from exchange 2013 Sp1 to exchange 2010 SP2 Update rollup 8

  I can migrate a mailbox fine from exchange 2010 sp2 update rollup 8 to exchange 2013 sp1 or Cu2.
  I was testing today migrating cross forest from 2010 sp2 udpate rollup 8 back to exchange 2010 sp2 but I get the below error.  Is this even possible?  I cannot find any documentation on this scenario yet.
  VERBOSE: [21:52:47.622 GMT] New-MoveRequest : The remote server doesn't support client 'casservername.domain.com'
  version (14.2.341.0 caps:05FEFF). Missing functionality: 'TenantHint'.
  VERBOSE: [21:52:47.637 GMT] New-MoveRequest : Admin Audit Log: Entered Handler:OnComplete.
  The remote server doesn't support client 'casservername.domain.com' version (14.2.341.0 caps:05FEFF). Missing functionality: 'TenantHint'.
      + CategoryInfo          : NotSpecified: (0:Int32) [New-MoveRequest], RemotePermanentException
      + FullyQualifiedErrorId : 782D22F0,Microsoft.Exchange.Management.RecipientTasks.NewMoveRequest

  Hi Steve,
  I'm a little confused what you are saying. Here is my understanding:
  When you migrate mailboxes from Exchange 2013 back to Exchange 2007, the above error occurs.
  If I have misunderstood your concern, please let me know.
  For migrating mailboxes back to Exchange 2007, there is a simple and straightforward method. Please use the New-MailboxExportRequest cmdlet to convert all mailboxes into pst files. And then use the Import-Mailbox cmdlet to import all pst files into Exchange
  2007.
  Hope it helps.
  Best regards,
  If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Amy Wang
  TechNet Community Support

• Cross Forest Migration from Exchange 2007 to Exchange 2013

  Hi
  Could anybody advice me the steps also the  pros and cons for below mentioned environment if we are going for the cross forest migration.
  Source 
  Domain -   test.local
  Active Directory -  Windows 2003
  Exchange Server - 2007
  Target
  Domain -   test.net
  Active Directory -  Windows 2012
  Exchange Server - 2013
  Also if it is possible ,
  How could I remove the source environment including the exchange servers. after the migration ?
  Regards
  Muralee

  Hi Oliver ,
  Please suggest us.               
   In my environment we are in a plan to migrate from exchange 2007 to exchange 2013 (cross forest migration).
  Source : Exchange 2007 with sp3 ru 10 
  Target : Exchange 2013 with cu2 ( new environment yet to be created).
  Trust : Forest trust in place (two way )
  Domain and forest functional level : 2003 in both target and source  
  Migration Steps :
  Step1 :
  We are in a plan to execute 'preparemoverequest.ps1' first in the target forest ,so that we will get the disable MEU
  in the target forest.
  Step2:
  Then we are going to use ADMT to migrate users SID'S and password .
  Step3:
  Then we are going to move the mailboxes with New-moverequest  
  Please have a look in to our steps and suggest us ,whether we are going to proceed the migration in a right way or not
  .Is anything needs to be changed please intimate me .
  Thanks 
  S.Nithyanandham 
  Hey there,
  Sorry for taking a little while to get back to you, i've been busy working on Hosted Lync deployments!
  Use ADMT first, then when using preparemoverequest.ps1 script using the -uselocalobject cmdlet. This will then tie it up to the ADMT migrated account.
  More info in this thread here: http://social.technet.microsoft.com/Forums/windowsserver/en-US/2916e931-36a0-4ba4-8c04-196dbe792b44/preparemoverequestps1-and-admt?forum=winserverMigration
  Oliver
  Oliver Moazzezi | Exchange MVP, MCSA:M, MCITP:Exchange 2010,MCITP:Exchange 2013, BA (Hons) Anim | http://www.exchange2010.com | http://www.cobweb.com | http://twitter.com/OliverMoazzezi

• Cross forest migration Exchange 2010 SP2 to Exchange 2010 SP2

  Hi,
  We are planning cross forest migration Exchange 2010 SP2 to Exchange 2010 SP2.
  Requesting you to please help us out for below scenario.
  Source Exchange 2010 SP2:- abc.com
  2AD, 2CAS & 2 MBX servers
  Database:- 4
  Total Users :- 3500
  Accepted Domains :- 8
  Total Data:- 5TB +
  Target Exchange 2010 SP2:- xyz.com
  Resource allocated same as above.
  Now we have to migrate users along with data to target forest xyz.com keeping both setup live, as moving 5TB + data will be a ongoing process and the same will take some time.
  With the guidelines mentioned in
  http://careexchange.in/cross-forest-migration-guide-exchange-2010-to-exchange-2010/#comment-14203 we are able to migrate test users along with data, but after migration the migrated user is not able to connect through MS Outlook even not able to login into
  OWA. It gives error “The Outlook Web App address
  https://mail.abc.com/owa is out of date.”
  Kindly let us know how to solve this issue.
  Kindly let me know if you want any more information from our end.
  Thanks in advance.
  Thanks and Regards, Shashank Kudi

  Hi Shashank,
  Do you have certificates properly installed and configured in the target Exchange?
  If not, Please configure certificate and import the certificate to the trusted root CA if you are using internal CA cert.
  Thanks, MAS
  Please mark as helpful if you find my comment helpful or as an answer if it does answer your question. That will encourage me - and others - to take time out to help you.

• WSUS 3.0 SP2 master server cross-forest migration impacts

      Hello to all, I'm preparing a cross-forest migration and have one WSUS 3.0 SP2 master on source forest placed in root domain. This master has 16 replicas scattered among child source domains. As I plan do migrate member servers using MS
  tool named ADMT 3.2 and considering that I will firstly migrate just root domain member servers to target forest, I need to know:
     1- Will WSUS 3.0 SP2 master server work after it's migrated from source to target forest? I mean: can all its replicas still access and donwload the necessary patches from it? Will its configuration be in place (groups, schedules, etc) ?
     2- Should I need to change source domain clients WSUS GPOs to point to the just migrated master server (new FQDN name)?
     3- Is possible to change my just migrated WSUS 3.0 SP2 to be replica from a master server already present on target forest? How this move could affect its existing replicas still present on source forest?
     Suggestion and attention points will be appreciated.
     Regards, EEOC.

  1- Will WSUS 3.0 SP2 master server work after it's migrated from source to target forest? I mean: can all its replicas still access and donwload the necessary patches from it? Will its configuration be in place (groups, schedules, etc) ?
  Fundamentally yes, as long as the downstream servers are updated to use the new hostname and DNS properly resolves that hostname. NOTE: You cannot "migrate" the WSUS role using ADMT. What is your plan for "migrating" the WSUS upstream server?
  2- Should I need to change source domain clients WSUS GPOs to point to the just migrated master server (new FQDN name)?
  Probably. Presumably the hostname and IP Address of the server are going to change.
  3- Is possible to change my just migrated WSUS 3.0 SP2 to be replica from a master server already present on target forest?
  Yes, but that's kind of a cart-before-the-horse move... which brings us back to the original question: How do you plan to "migrate" the upstream server?
  How this move could affect its existing replicas still present on source forest?
  Well.. it will introduce a three-tier replication hierarchy for starters, which will slow everything down by one or two days. But, really, I wouldn't worry about that because there's no real need to do this.
  Suggestion and attention points will be appreciated.
  Install a *NEW* WSUS server in the target forest.
  Configure it as a replica of the existing master in the source forest.
  Replicate.
  When the replication is complete, reconfigure it as an Upstream Server and RESET the Product Category and Update Classifications to what they should be.
  Synchronize with Microsoft.
  When that sync is successful, enabled regular synchronizations.
  Configure clients and downstream servers to sync from the new upstream server in the target forest.
  When all clients and downstream servers are working with the new server, turn off the old one.
  Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
  SolarWinds Head Geek
  Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
  My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
  http://www.solarwinds.com/gotmicrosoft
  The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

• Cross-forest migration to Exchange 2013 SP1 and Outlook 2013 SP1

  Hello! I have two forest: Exchange 2010 SP2 RU5 - resource forest and Exchange 2013 SP1 - account forest. I make cross-forest migration from resource forest (linked mailboxes with account forest) to forest with Exchange 2013 SP1.
  I have moved mailbox from resource forest exchange 2010 to exchange 2013 sp1 forest.
  Outlook 2010 connect to migrated mailbox without any problem, but outlook 2013 sp1 cannot connect to migrated mailbox.
  Error look like - cannot find exchange server.
  I created new mailbox in Exchange 2013 organization and can connect to it with outlook 2010 and outlook 2013 sp1.
  Someone have the same problem with migrated mailbox? How to solve it?
  Truly, Valery Tyurin

  You can use New-MoveRequest to perform a cross-forest move. Here is a well post and step-wise explanation you can check for cross forest migration from exchange 2010 to exchange 2013(http://msexchangeguru.com/2013/11/03/e2013crossforestmigration/).
  Moreover, you can try this utility (
  http://www.exchangemigrationtool.com/ ) to accomplish this task.

• Migrate Exchange 2010 public folders cross forests

  Hi,
  Due to some Exchange and Active Directory issues (with remnants of old Ex 2003 server), we are going to migrate Exchange 2010 Mailboxes and public folders to a new Exchange 2010 Sp3 server, which is created in a new AD forest.
  One thing we still have to decide, which is how to migrate public folders.
  Apparently there are 2 ways:
  1. To export PF data to PST and then import using Outlook in destination Exchange server
  2. To use interorg replication tool to replicate PFs cross forest in target Exchange Server.
  I would really appreciate if someone suggests which one is best. We have around 100GB of PF data.
  Also, should we migrate Public Folders first? We think that we should move Mailboxes first.
  Thanks in anticipation.
  Regards, David Johnson

  Hi,
  Yes, when we decide to migrate from one Exchange server to another server, we need to move mailbox first.
  About migrating public folders, both of these two solutions are available, I think that the first one is simpler.
  Here is a similar thread for your reference.
  http://social.technet.microsoft.com/Forums/exchange/en-US/e3a23acd-efd2-4e51-bf4d-cb94b4b88a9f/exchange-2010-public-folder-cross-forest-replication-tool?forum=exchange2010
  Hope this helps.
  Best regards,
  Belinda
  Belinda Ma
  TechNet Community Support

• SCOM 2007 cross-forest clients migration

     Hello to all. I'm preparing a cross-forest migration from source domain domain1.a.com to target domain domain2.b.com . 
     Source domain has hundreds of servers (windows 2003 and windows 2008). All source DCs are Windows 2003. Source domain already has SCOM 2007 R2 deployed on its member servers and on others located on another source domains.
     As cross-forest migration will run just for domain1.a.com I need to know:
     1- Is possible to migrate member servers from source-->target and keep source SCOM 2007 R3 monitoring the already migrated member server? 
     2-If positive, what need to be done in advance (before any member server migration) and after each member server migration?
     3-If target forest already have a SCOM 2007 R2 environment, what should need to be done so migrated member servers would be monitored on this target SCOM 2007 R2 (that has nothing to do with the source one) ?
     Thanks in advance, EEOC.

  1. It is possible.
  2. You will have to install certificates in the environment and either manag the agents through a gateway (minimal number of certs) or by installing certs on the agents directly.
  3. Just uninstall the agents and reinstall by the target SCOM 2007 R2 console.
  Juke Chou
  TechNet Community Support

• Cross Forest DHCP Authorization

  Hi,
  I am trying to authorize a DCHP server in a different forest (forestB). I am using my forestA credentials to logon to forestB's DC. When pulling up the DHCP console, all I see is DHCP servers from forestA.  My netlogon server is pointing to a DC in
  forestA, I think this is where the problem is.  How can I get around this?  
  Thanks!

  Hi,
  Do you encounter issues in authorizing the server? Does your account hold necessary delegated permissions to create the dhcpClass object within Configuration container in the forestB domain ?
  Regards,
  Calin

• Need help on Cross Forest Exchange 2007 - 2013 with Linked Mailboxes

  Hey all,
  So I'm in a bit of a pickle with my Exchange design and am trying to figure out if there's a way to migrate mailboxes across forests where Linked mailboxes are being used. I've done a bit of reading and have noted stuff like preparing the move request in
  AD, etc. But I'm wondering if someone can break it down for me.
  http://1drv.ms/1lWjLqG
  The above is a OneNote diagram of how we have moved over time. Please forgive my sloppy handwriting but I hope it gets the point across. I will text it out here as well:
  Original Design
  The original design of the domains when I joined the company were fabrikam and contoso. Contoso is a domain that sits entirely in the "DMZ". Fabrikam was the internal AD forest where most services and users authenticated to. In Contoso, there
  are 2 domain controllers, the "Front End" Exchange Server (Edge Transport), and the "Back End" server, which is CAS/Mailbox.
  There is a forest trust between contoso and fabrikam where "Linked Mailboxes" are created in Contoso, and then the LinkedMasterAccount is set to Fabrikam.
  Migration/Hybrid Design
  Due to the fact that these two domains were configured massively inappropriately, riddled with security holes as well as strange permissions configurations, the decision was made to create a new internal AD domain. In my OneNote, I've labeled this 'specialbank.com'.
  A long while ago we migrated users from Fabrikam to SpecialBank via trusts. To facilitate access to Exchange, a new trust was created between Contoso and SpecialBank to allow us to update the LinkedMasterAccount parameter to the new Specialbank domain.
  We have most of our users authenticating to their mailboxes via SpecialBank, while the mailboxes still reside in Contoso.
  Migration from Exchange 2007 to Exchange 2013
  I am attempting to now figure out the best way to migrate the mailboxes from Contoso to a new set of Mailbox servers in SpecialBank. This will also be an upgrade from Exchange 2007 (Current) to an Exchange 2013 installation.
  The latest Service Packs and CUs are installed in both.
  What would be the best procedure to move these mailboxes? To my knowledge, the current best practice/recommended way is to perform a user/SID migration from Contoso to SpecialBank. But I already have accounts in
  SpecialBank that users are actively using.
  I'm not opposed to doing a simple PST export from Contoso to SpecialBank, but we're looking at around 120 mailboxes. So I'm trying to make my life a little easier instead of spending a weekend here.
  If I try to do it in batches, I need to figure out how to handle autodiscover and CAS. Since I'm creating an entirely new Exchange environment, I'm trying to limit what I place in the existing configuration. But I'm not opposed to setting up something temporarily
  if I need to in order to make the migration transparent to users.
  Can anyone help?

  Hi ,
  From you description i came to know contoso is the resource forest and special bank is the account forest .
  You just wanted to migrate the linked mailboxes from resource forest to account forest and also you would want the migrated mailboxes to get merged to the respective user accounts in the account forest to become as a normal user mailbox.Am i right ?
  Please correct me if i am wrong . I have found some blogs in internet please have a look in to that especially the first one.
  http://www.outlookforums.com/threads/60210-cross-forest-mailbox-move-and-linked-mailbox/
  http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_27974905.html
  Regards
  S.Nithyanandham
  Thanks S.Nithyanandham

• Cross-forest access to public folders Exchange 2013-2007

  Dear.
  We have an Exchange 2007 org in one forest and an Exchange 2013 org in another forest.
  User accounts remain in the 2007 AD, mailbox moved to Exchange 2013 in the other forest, so a linked mailbox.
  What do I need to do in the Exchange 2007 public folders to give the migrated mailboxes (not migrated users) access to these public folders?
  Thanks for the support.
  Regards.
  Peter Van Keymeulen, IT Infrastructure Solution Architect, www.edeconsulting.be

  Hi Stephen,<o:p></o:p>
  <o:p> </o:p>
  Do you have trust between Exchange 2007 forest and Exchange 2013 forest? Please set up a trust between the two forests. Then set the public folder client  permission
  to see if we can access the
  public folders.<o:p></o:p>
  <o:p> </o:p>
  If not, since Public folder cross forest migration is not supported in from an Exchange 2007/2010 forest to an exchange 2013 forest, refer to forum:
  http://social.technet.microsoft.com/Forums/office/en-US/51da1b97-fbb1-4f81-87da-c3370960c4ab/crossforest-public-folder-migration?forum=exchangesvrdeploy
  http://social.technet.microsoft.com/Forums/office/en-US/663f0dc3-a977-408a-93c7-94584fbefc62/public-folder-issue-cross-forest-migration-exchange-2010-to-2013?forum=exchangesvrdeploy
  <o:p></o:p>
  Title: Migrate Public Folders to Exchange 2013 From Previous Versions<o:p></o:p>
  Link:
  http://technet.microsoft.com/en-us/library/jj150486(v=exchg.150).aspx<o:p></o:p>
  <o:p> </o:p>
  So for public folder migration,
  the only supported path is cross forest 2007/2010 to 2007/2010 and then inter forest 2007/010 to 2013. Or
  we can first export all the public folder to PST from the Exchange 2007 forest, then import the PST to the Exchange 2013 forest.
  <o:p></o:p>
  Regards, Eric Zou

• Gal Sync and group member sync cross forest. Not working together

    I am finalizing a cross forest migration. The End client needs an extended period of time with both domains up and running. I have been working with an advisory engineer and we are having a hard time.
    We started by setting up GAL sync and that works as expected. Then we tried to setup group provisioning, and I have that working. I can create a groups and add members, as long as those users are in FIM and the Target forest the membership information
  is preserved. During the process we removed the GAL sync agents for ease of troubleshooting. Now when I run the GAL sync agents and I search the connector space I am showing connector false on both sides. I am not sure how to correct that. The other objects
  were created by the DS agents and FIM.  If I sync a new object it will create a contact cross forest. 
    What I want it to do is run the GAL sync without group contacts. Synchronize the GAL on both sides. (Groups have been created on both sides of the domain and ADMT has moved the group membership with the user) After the GAL is synchronized I need FIM
  to synchronize the group membership adding the contacts from the missing users that have moved. I am not sure how to get that logic in the system.
    I am not sure I am going about this the right way. It may be easier to use the FIM and AD DS agents to provision users cross forest as contacts and the group membership would be preserved.  If that is the case, I am not sure how to pull
  that off.
  Does anyone have recommendations?
  Thank You

   
  This is an overview of basically how it works. 
  The Group sync is pretty much out of the box, the real key here is the User is imported to FIM and that 'Person' is then provisioned outbound as a contact. 
  Membership synchronizes with the Group and FIM maintains group membership cross forest as the source user, and the target contact are the same 'Person'. 
  Precedence is important.  The OU structure is the same on both forests and needs to be initialized.  The Groups Sync is ahead of the users and then the users sync, and the group membership
  syncs. 
  The attribute flow is a long list.  It includes all of the exchange information for the contact, and it provisions the contact as mail enabled on both sides.  There is no VB it’s all
  done in sync rules. 
  Next Ill post the attribute flow and precedence diagram, I’ll get that together this week (I hope).  I intend to put this up in a lab and get screen shots on the whole configuration. 
  I will do that as soon as I can.
  Let me know if you have questions.

• SCCM 2012 & SCOM 2012 - Cross Forest

  My current environment is running Operations Manager and Configuration Manager 2007, I am planning an upgrade them to the 2012 version.
  I need to know whether my upgrade to 2012 will support cross forest support ?
  Cheers

  And, there is no 'upgrade' of Configuration Manager 2007 to Configuration Manager 2012 (if you mean Configuration Manager 2007 instead of "SCCM 2008"). You would need to do a side-by-side migration. There are docs, webcasts, webinars (in fact I just did
  one a couple of weeks ago), and TechNet virtual labs on migration to help you gain understanding on how it would work.
  However, yes, Configuration Manager (both 2007 and 2012) do support cross forest environments.
  Wally Mead