Migrating Mailboxes X Forest - not moving AD object, or EV Data
Hi Folks,
Huge migration project.
Moving mailboxes from mulitple exchange environments, to an Exchange 2010 in a new domain using linked-mailboxes. However we want the original user in Domain A, to retain permissions on thier archive. At the moment, the migration of the mailbox works fine - but only the 'new' user in Domain B (i.e the disabled linked mailbox AD user) gets permissions - after a mailbox synch. The permissions to the legacy domain account have to be manually added.
Synchinmigrationmode is on, etc.
Is there anyway to ensure that the permissions for the legacy domain account, are not replaced by those of the 'new' domain account once a mailbox synch is complete?
Scripting per user permissions would be a nightmare, besides, EVPM doesn't like creating MAPI sessions through a CAS server (yes, I have added default DS server reg edit).
All suggestions gladly welcomed! Can't find much from Symantec for Linked Mailboxes at all.
Using ADSIEdit.msc validate that the new user account in Domain B contains the property msExchMasterAccountSid (this should contain the SID of the linked account in Domain A). If this is present then EV should be synchronizing this to the Archive permissions.
If it does please can you run a synchronize against a user where the permissions are not correct and trace AgentClientBroker.exe and post here. If during synchronization we come across an associated account without the required permissions it gets logged in the trace.
Additionally run get-mailboxpermission for the user on the Exchange server and validate the associated account has full mailbox access (FullAccess) as this is what EV requires.
Regards
Karl
