Announcement

Collapse
No announcement yet.

Steps to adding a second AD (domain) to Exchange 2003

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Steps to adding a second AD (domain) to Exchange 2003

    Hi,

    I've searched for hours, including MS books, and TechNet, but cannot find clear steps to adding a second domain to Exchange 2003 with AD authentication. I know it involves additional SMTP virtual servers but haven't come up with the trick yet.

    An important feature is that the Exchange Server is a back-end server behind a fire-wall and front-end server using Microsoft's FE/BE architecture. This includes OWA and OMA and is only accessable with SSL. One (not all) of the domains requires POP3 (not ssl at this point).

    The second domain has it's own domain controller for user authentication.

    Thanks,

    Steve

    PS After I conquer 2003, then I have to move to 2007 (fun!).

  • #2
    Re: Steps to adding a second AD (domain) to Exchange 2003

    It has nothing to do with virtual SMTP servers. While you can add additional SMTP virtual servers, that doesn't actually help with anything.

    If the second domain is not part of the same forest then you have to create user accounts on the domain with Exchange in it for all users. User Accounts = mailboxes. You cannot have mailboxes without a user account.

    You then have to look at how you are going to authenticate.
    There are two options.
    1. Separate authentication - so when the users in the second AD domain start Outlook they are prompted to authenticate.
    2. Trusted authentication - authentication takes place using the trust. You have to add the user accounts from their own domain to the permissions on the mailbox.

    However if either network is SBS, then trust is not going to be possible as you cannot establish trusts with an SBS domain.

    Simon.
    --
    Simon Butler
    Exchange MVP

    Blog: http://blog.sembee.co.uk/
    More Exchange Content: http://exchange.sembee.info/
    Exchange Resources List: http://exbpa.com/
    In the UK? Hire me: http://www.sembee.co.uk/

    Sembee is a registered trademark, used here with permission.

    Comment


    • #3
      Re: Steps to adding a second AD (domain) to Exchange 2003

      Hi Simon,

      Thanks for your reply. The different domains are different clients who have no common business relationship, except that we host their IT. Currently each client is on their own Exchange server, which is a waste of resources because each client has only 30-50 users. The different domains each have their own domain servers of course, which are connected to our backbone throught firewall "back doors." We can pass AD information through the back door if we want, but we naturally don't want different clients to have any interaction with the others. Separate public folders, global address address books, etc.

      Microsoft claims that you can host multiple domains on 2003 SP1 and higher and 2007. There documentation on it just isn't clear enough.

      More info would be appreciated.

      Thanks,

      Steve

      Comment


      • #4
        Re: Steps to adding a second AD (domain) to Exchange 2003

        The additional information that you have posted changes things completely.

        What you want to do is a hosted Exchange deployment. That is completely different.

        To start with, the licensing is different. You will need to use Microsoft's service providers licensing scheme.

        Address list segregation is only supported by Microsoft using their hosting solution on Exchange 2003, and they have pulled all of the articles that explained how to do it without that.

        They do support it outside of their hosting solution with Exchange 2007. There have been many articles written about it. Again look for address list segregation.

        In all cases it requires significant changes to the AD and Exchange setup. You should not test it on a live environment - do it in the lab first. However I caution you - it is not something you will do in a morning. I am in the process of building a hosted Exchange environment at the moment, I have been at it for most of this month and I am still not happy with it.

        Simon.
        --
        Simon Butler
        Exchange MVP

        Blog: http://blog.sembee.co.uk/
        More Exchange Content: http://exchange.sembee.info/
        Exchange Resources List: http://exbpa.com/
        In the UK? Hire me: http://www.sembee.co.uk/

        Sembee is a registered trademark, used here with permission.

        Comment

        Working...
        X