4.1 Understanding the Windows 2000 and Exchange 2000 hierarchy
 | ||||||||
| Chapter 4 - Managing the Exchange Organization Topology | |
| Monitoring and Managing Microsoft Exchange 2000 Server | |
| by Mike Daugherty | |
| Digital Press ?2001 | |
 |
4.3 Active Directory replication
Exchange information about users and resources must be replicated throughout the Exchange organization so that accurate information is available to every Exchange server and every Outlook user . Replication of the resource information is necessary for proper functioning of the Exchange infrastructure and replication of the recipient names ensures that messages will be delivered to the correct mailboxes.
Directory replication has changed between Exchange 5.5 and Exchange 2000. The most obvious change is that Exchange no longer has a directory and is no longer responsible for replicating directory information. Windows 2000 has assumed that responsibility. The type of information that was previously stored in the Exchange 5.5 directory is now stored in the Windows 2000 Active Directory.
Exchange 5.5 supported object-level directory replication. In Exchange 5.5, if you make changes to any attribute of a directory object, all attributes for the objectnot just the changed attributewere replicated to other Exchange servers. For example, if you changed the telephone number for a particular user, the users telephone number, display name , address, city, state, e-mail addresses and all other attributes for the user object were replicated to other servers. With object-level replication, even minor changes to selected object attributes within the directory could cause significant network traffic.
Windows 2000 (and thus Exchange 2000) uses a per-attribute replication mechanism. If you make changes to any attribute of a directory object, only the changed attribute is replicated. Using the same example as before, if you change a users telephone number, only the modified telephone number is replicatednot the entire user object. Per-attribute replication is more efficient and generates less network traffic than with Exchange 5.5.
By default, objects within the domain naming context, such as user objects, are only replicated between domain controllers within the local domain. Selected object attributes from the domain naming context are tagged for replication to the Global Catalog. The Global Catalog is replicated to all Global Catalog servers within the Windows 2000 forest. This allows processes and users in all domains to access selected attributes that normally would not be replicated outside of the local domain. Table 4.2 includes some of the user attributes that are included by default in the Global Catalog. You will notice that not all user attributes are tagged for replication to the Global Catalog. You can mark additional attributes for Global Catalog replication using the Schema Manager MMC console.
The per-attribute replication mechanism and the use of the Global Catalog have some benefits for Exchange. They also affect some of the ways you may be currently managing your Exchange environment. Users, contacts, and groups are now objects that exist in the Active Directory rather than in a separate Exchange directory. The per-attribute replication means that you can make more frequent changes to object attributes without significantly increasing network traffic.
4.3.1 Synchronizing directory data between forests
A single Exchange 2000 organization cannot span multiple forests. If you have multiple forests, then you must have multiple Exchange 2000 implementations . It is best to avoid this situation, but it is not always possible. There are several legitimate business reasons that may force you to support multiple Exchange implementations for multiple forests. The most obvious reason is when two companies merge, and they had both already implemented their own separate Windows 2000 forests. There are also situations where different divisions of the same company are legally required to maintain separate environments.
Unless you have an overwhelming business reason for implementing multiple forests, you should avoid doing so. Once you implement multiple forests, there are no automated tools for merging them.
If you find yourself unavoidably faced with multiple forests, you can create manual trust relationships between specific domains in the different forests. However, these are nontransitive trusts, which means you will have a domain model that resembles a Windows NT 4.0 environment, with multiple manual trusts between each domain.
You will also need to replicate data between the two separate Exchange implementations. Since the standard Windows 2000 replication process cannot span multiple forests, this replication must be done using other mechanisms. Several options are available for synchronizing multiple forests. Compaqs LDAP Synchronization Utility (LDSU) and other third-party tools can be used for this purpose. (See http://www.compaq.com/services/message/mc_ldsu.html for additional information about LDSU.)
A Public Folder Inter-organization Replication tool is included with Exchange 2000. This tool can synchronize public folders between different Exchange organizations. The Public Folder Inter-organization Replication tool can also replicate Free/Busy System folders, thus allowing users from different forests to schedule meetings with one another and look up free and busy time-slots.
| |
EAN: 2147483647
Pages: 113