Re: Ex2003 ADC /schemaonly
From: Steven Halsey [MSFT] (Stevhal_at_Online.Microsoft.com)
Date: 07/23/04
- Next message: Steven Halsey [MSFT]: "Re: Exchange 2003 Information Store won't start"
- Previous message: Steven Halsey [MSFT]: "Re: Exchange 2003 Distribution List"
- In reply to: Joan: "Ex2003 ADC /schemaonly"
- Next in thread: Joan: "Re: Ex2003 ADC /schemaonly"
- Reply: Joan: "Re: Ex2003 ADC /schemaonly"
- Reply: Joan: "Re: Ex2003 ADC /schemaonly"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 22 Jul 2004 23:07:55 -0700
ADC Questions/Answers:
1. Can you install ADC into a Child Domain?
Yes. You'll won't need to run Exchange ADC Setup /SchemaOnly in the Root
domain if you have already run Exchange 2003 Forest Prep in the Root
domain. Exchange 2003 forestprep included the Schema Expansions for ADC. If
you ran Exchange 2000 forest prep then you'll still need to run the ADC
/shemaonly in the root domain. Then create a service account in the child
domain and add the service account to the Child Domain's Built-in
administrators group. When you install ADC be sure to specify this service
account. You will need to use the Enterprise Administrator Account to
install the ADC server.
2. Having the Child Account Adminitrate the ADC?
Since your child domain will be in mixed mode, you'll have to setup some
special permissions to use the Child Account. Once Exchange is installed
any Exchange Administrator who is delegated as a Full Organization
Administrator can Administrate ADC Connection Agreements, so you could
delegate the child administrator as a Full Org Administrator. Before that
time you can set up the ADC Permissions for the child. Before you create
any connection agreements, but after ADC is installed. Run as Enterprise
Administrator a tool like ADSIEdit (available in Windows Tool Kit). Open
the Configuration Container, then the Services, then Microsoft Exchange, and
last open the Active Directory Connections. Get the Properties of the
Active Directory Connections Container and go to the Security Tab. Add the
Child Administrator Here with full permissions, and make sure it inherits to
child objects.
3. Where to install ADC server?
It can run on a DC or a member server. Since ADC service is recommended to
have the Built-in Permission so ADC has high credentials and could run on
the DC. As far as I know there isn't an official recommendation, you might
want to post again to the NewsGroups about the ADC spot, because you might
not get an answer on this thread again. I'll ask around to see if there is
a consensus.
-- Steven Halsey Stevhal@online.microsoft.com Microsoft Exchange Please do not send email directly to this alias. This alias is for newsgroup purposes only. This posting is provided "AS IS" with no warranties, and confers no rights. "Joan" <anonymous@discussions.microsoft.com> wrote in message news:uhFSnhEcEHA.1248@TK2MSFTNGP11.phx.gbl... > Scenario: Empty Root with one child domain that was upgraded from NT4. The > child has 2 DCs and 2 NT4 BDCs and is where we will install Ex2003 onto a > member server. Both root and child are mixed mode -- we can't go native yet > as 5.5 happens to be on both BDCs. Also, while our site will have the Ex2003 > server, we will still have 5 other 5.5 sites (geographically dispersed) in 5 > different NT4 domains for many months yet (the NT4 domains will be migrated, > the sites will be kept and an Ex2003 server will replace the 5.5 server). > > A few questions about the ADC... > > We need to be able to administer the ADC with a child domain admin account. > That means we need to install it onto a child DC, given that we are in mixed > mode. I'm fine with installing the ADC onto a child DC using the root Admin > account as long as after the install a child domain Admin can administer it. > Will that work? > > Also, if I want to install the ADC onto a child DC with a child Admin > account, do I still (as I read was necessary with Ex2000) need to run the > ADC setup with the /schemaonly switch on a root DC first? I've already run > /forestprep on the root DC that is the Schema Master. I'm about to run > /domainprep on both a root DC and a child DC. > > Also, typically on which server is the ADC installed? Is it installed onto a > DC or the first Ex2003 server (a member server)? > > Thanks, > Joan > >
- Next message: Steven Halsey [MSFT]: "Re: Exchange 2003 Information Store won't start"
- Previous message: Steven Halsey [MSFT]: "Re: Exchange 2003 Distribution List"
- In reply to: Joan: "Ex2003 ADC /schemaonly"
- Next in thread: Joan: "Re: Ex2003 ADC /schemaonly"
- Reply: Joan: "Re: Ex2003 ADC /schemaonly"
- Reply: Joan: "Re: Ex2003 ADC /schemaonly"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
