HOW TO: Install and Configure Exchange Server 5.5 and the Active Directory Connector in a Windows 2000 Domain (301036)


The information in this article applies to:

  • Microsoft Exchange 2000 Server
  • Microsoft Exchange Server 5.5
This article was previously published under Q301036

IN THIS TASK

SUMMARY

This step-by-step instruction guide describes how to integrate an existing Exchange Server 5.5 directory system with a new Microsoft Windows 2000 Active Directory.

IMPORTANT: This article discusses the Active Directory Connector (ADC). There are two versions of the ADC. One version works between Active Directory and a pure Exchange 5.5 organization, and the other version works in a mixed-mode environment that includes both Exchange Server computers and Exchange 2000 servers. If you will not integrate Exchange 2000 into the Exchange Server organization, you can use the version of the ADC that is included with Windows 2000. However, if you will introduce an Exchange 2000 server to the new Exchange Server organization later, then you must use the Exchange 2000 version of the ADC. The Exchange 2000 version of the ADC is located in the \ADC folder of any Exchange 2000 CD or service pack.

One of the major differences between Exchange Server 5.5 and Exchange 2000 is that Exchange Server 5.5 depends on its own directory of objects, and Exchange 2000 depends on the Microsoft Windows 2000 Active Directory to store and provide information about all of the directory objects. When you migrate from Exchange Server 5.5 to Exchange 2000, you must "build a bridge" that moves the objects from the Exchange Server 5.5 directory and converts the objects to equivalent objects (and attributes) in the Windows 2000 Active Directory.

The subtasks in the procedure that this article describes include installing and configuring an Exchange Server 5.5 computer on a Windows 2000 member server and installing and configuring an Active Directory Connector (ADC) on a Windows 2000 domain controller. Microsoft recommends that you use this procedure in a test environment before you apply it to your production environment.

These instructions assume that your lab environment includes a Windows 2000 domain controller (installed with the default settings) and a Windows 2000 member server that are both part of the same Windows 2000 domain.

back to the top

Installing Exchange Server 5.5

Before you install any Exchange Server components, Microsoft recommends that you create two service accounts. Those accounts' security credentials are the basis for installing and controlling all of the Exchange Server services in the Exchange Server 5.5 site and in the Exchange 2000 Active Directory Connector.

NOTE: Although you may want to use separate service accounts in a production environment, you can use a single service account in a lab environment. Doing so may simplify the installation process.

back to the top

Create the Service Accounts

To create the service accounts:
  1. Use an account with rights to create new user accounts to log on to the Windows 2000 domain controller.
  2. Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers to start the Active Directory Users and Computers console.
  3. Expand the domain container.
  4. Right-click Users, click New, and then click User on the shortcut menu.
  5. In the First Name box, type the first name of the new user (for this example, "Exchange"). In the Last Name box, type the last name of the new user (for this example, "Service Account"). In the User Logon box, type the logon name of the new user (for this example, "ExchService"). Click Next.
  6. Type a new password, click to select the Password Never Expires check-box, and then click Finish to add the new service account.
The account that you created has permissions to write to the Active Directory Connector container and install programs on both the member server and the domain controller. The minimum security that is required for this procedure is a service account that is a member of the built-in (local) Administrators group. Because this is a laboratory environment (and you are in control of the environment), you can give this service account far more permissions than it would need in a production environment.

back to the top

Make the Account a Member of the Schema Admins, Enterprise Admins, and Domain Admins Groups

To make this account a member of the Schema Admins, Enterprise Admins, and Domain Admins groups:
  1. Right-click the new account that you created in the "Create the Service Accounts" section, and then click Properties (or just double-click the user object).
  2. Click the Member Of tab, and then click Add.
  3. In the Select Groups dialog box, select the Schema Admins, Enterprise Admins, and Domain Admins groups, and then click Add to add the groups that you want to add to the list.
  4. Click OK to finish.
back to the top

Install Exchange Server 5.5

To install Exchange Server 5.5:
  1. Insert the Exchange Server 5.5 CD-ROM, locate the Server\I386 folder, and then double-click Setup.exe. When you install Exchange Server 5.5 on a computer that is running Windows 2000 Server, you may receive an error message that indicates that this product is not intended for use on this version of Windows. Because you will eventually install Exchange Server 5.5 Service Pack 3 (SP3) or Exchange Server 5.5 Service Pack 4 (SP4), you can safely ignore this error message. Click Run Program to continue.
  2. Accept the license conditions, and then click Next until the Installation Options dialog box is displayed. In the Installation Options dialog box, click Complete/Custom installation, and then use the following settings:
    1. Install Microsoft Exchange Server, Microsoft Exchange Administrator, and Books Online.
    2. Do not install Outlook Web Access.
    3. Do not install any foreign mail connectors, the Exchange Event Service, or the Key Management Server.
  3. Click Next to continue. Enter the 10-digit CD Key that is included with your version of Exchange Server 5.5, and then click OK. Write down the Product ID number that is provided, and then click OK. Click to select the check box that indicates that you agree to the per-seat licensing conditions, and then click OK.
  4. Click Create a new Organization and Site, type the company name in the Organization Name box (for this example, type Company), and then type the site name in the Site Name box (for this example, type Exchange).
  5. Click OK to continue. Click Yes to confirm that you want to create a new site. When you are prompted to do so, type the name and password of the Exchange Server service account that you just created, and then click OK. When you are prompted to acknowledge that the Exchange Server service account has been granted additional user rights, click OK.
  6. After the installation is complete, run the Optimizer tool and use the following settings:
    1. In the Users on this Server box, type Less than 500.
    2. In the Type of Server box, type Private Store and Public Store.
    3. In the Users in organization text box, type Less than 1,000.
    4. In the Limit Memory Usage text box, keep the default setting of zero.
  7. Click OK to continue. If more than one drive partition is available, accept the Optimizer's recommendations for file placement. Click Finish to allow the Optimizer to automatically move the files and restart the Exchange Server services.
After you successfully complete the steps to install Exchange Server 5.5, immediately upgrade the Exchange Server environment to at least Exchange Server 5.5 Service Pack 3 (SP3).

back to the top

Install Exchange Server 5.5 SP3

To install Exchange Server 5.5 SP3:
  1. Insert the Exchange Server 5.5 SP3 CD-ROM, and then locate the Eng\Server\Setup\I386 folder.
  2. Double-click Update.exe.
  3. Click OK to agree to update the installed version of Exchange Server 5.5.
  4. Click OK to agree to reinstall the Exchange Server files.
  5. Click OK to complete the update.
back to the top

Installing the Active Directory Connector

The ADC replicates user objects between the Exchange Server 5.5 directory and the Windows 2000 Active Directory. A version of the ADC is included with both Windows 2000 and Exchange 2000. These steps assume that you are installing the version of the ADC that is included with Windows 2000.

To install the ADC:
  1. Use the service account that is a member of the Schema Admins and Enterprise Admins groups (which you created and configured in the "Create the Service Accounts" and "Make the Account a Member of the Schema Admins, Enterprise Admins, and Domain Admins Groups" sections of this article) to log on to the domain controller (to install the ADC, you must modify the Active Directory schema, along with additional configuration settings).
  2. Insert the Windows 2000 Server or Microsoft Windows 2000 Advanced Server CD-ROM. Click Browse this CD, and then locate the Valueadd\Msft\Mgmt\Adc folder.
  3. Double-click Setup.exe to start the ADC Setup Wizard, and then click Next.
  4. Click to select the Active Directory Connector and Active Directory Connector Management check boxes to install both components.
  5. Install the ADC in the default folder C:\Program Files\Msadc.
  6. Use the Exchange Server service account that you created in the "Create the Service Accounts" section of this article (in this example, "ExchService") as the ADC service account.
  7. After Setup is complete, click Finish to quit the wizard. Wait a few minutes to make sure that the registry and schema changes have completed.
back to the top

Configuring a Two-Way Connection Agreement

The final subtask in this procedure is configuring a two-way Connection Agreement that replicates the contents of the Exchange Server 5.5 Recipients container and the Windows 2000 Active Directory Users container.

NOTE: In a multiple-site environment, you must create one two-way Connection Agreement for each Exchange Server 5.5 site in the organization.

To configure the two-way user Connection Agreement:
  1. Click Start, click Programs, select Administrative Tools, and then click Active Directory Connector Management to open the Active Directory Connector Management console.
  2. Right-click the Active Directory Connector (server_name) object, click New, and then click Connection Agreement. On the General tab, type a name for the Connection Agreement in the Name box (choose a descriptive name such as "Exchange Server 5.5 Two-Way Connection Agreement - site:site_name").
  3. Under Replication direction, click Two-Way. When you receive a message that notifies you that the Connection Agreement must now write to the Exchange directory, click OK. Use the following settings on the Connections tab:
    1. Make sure that the Windows 2000 Server box contains the name of a Windows 2000 domain controller. Make sure that the Authentication box defaults to Windows Challenge/Response.
    2. Connect as an account with permission to write to Active Directory. You can use the Exchange Server service account that you created in the "Create the Service Accounts" section of this article (in this example, "ExchService") if you previously added that account to the Domain Admins group.
    3. Make sure that the Exchange Server box contains the name of your Exchange Server 5.5 computer. Make sure that the Authentication box defaults to Windows Challenge/Response.
    4. Use the Exchange Server service account that you created in the "Create the Service Accounts" section of this article (in this example, "ExchService") to connect to this server.
  4. On the Schedule tab, accept the default settings. Click the From Exchange tab, and then use the following settings (these settings configure replication from Exchange Server 5.5 to Active Directory):
    1. In the Exchange Recipients Containers dialog box, click Add.
    2. Locate the Exchange 5.5 Recipients container. Click OK to return to the From Exchange tab.
    3. In the Default Destination dialog box, click Modify, and then click Users. Click OK to return to the From Exchange tab.
    4. Accept the default settings to replicate mailboxes, custom recipients, and distribution lists.
  5. Click the From Windows tab, and then use the following settings (these settings configure replication from Active Directory to the Exchange Server 5.5 directory):
    1. In the Windows Organizational Units dialog box, click Add, and then click Users. Click OK to return to the From Windows tab.
    2. In the Default Destination dialog box, click Modify, and then set the default destination to Recipients. Click OK to return to the From Windows tab.
    3. Accept the default settings to replicate Users, Contacts, and Groups.
  6. Click the Deletion tab, and then accept the default settings for deletion from both sides. Click the Advanced tab, and then use the following settings:
    1. Accept the default settings for Pages results.
    2. Click the check boxes for both organizations to make this a Primary Connection Agreement for both organizations.
  7. Click OK to close the Properties dialog box. To force replication, right-click the Connection Agreement that you just created, and then click Replicate Now.
back to the top
Modification Type:MinorLast Reviewed:4/28/2005
Keywords:kbhowto kbHOWTOmaster KB301036
©2004 Microsoft Corporation. All rights reserved.