RE: New Exchange 2003 server in existing AD/DC environment

  • From: "Andrew English" <andrew@xxxxxxxxxxxxxxxxxxxxxx>
  • To: "[ExchangeList]" <exchangelist@xxxxxxxxxxxxx>
  • Date: Tue, 21 Dec 2004 23:22:44 -0500

Lara, 

Some people think that when you install EX in a AD/DC environment, that
you are installing it on the AD/DC itself and not installing it on a
separate server running Win2k3 Standard Sever.

Regards,
Andrew

-----Original Message-----
From: Lara, Greg [mailto:GLara@xxxxxxx] 
Sent: Tuesday, December 21, 2004 10:27 AM
To: [ExchangeList]
Subject: [exchangelist] RE: New Exchange 2003 server in existing AD/DC
environment

http://www.MSExchange.org/

Andrew, the term for a server with "AD itself" is a Domain Controller,
or
DC. This is what was unclear in your response.

Greg Lara

------------------------------------------------------------------------
----
---------------------------
This e-mail message may contain privileged, confidential and/or
proprietary
information intended only for the person(s) named. If you are not the
intended recipient, please destroy this message, and any attachments,
and
notify the sender by return e-mail. If you are not the intended
recipient(s), or the employee or agent responsible for delivering the
message to the intended recipient(s), you are hereby notified that any
dissemination, disclosure or copying of this communication is strictly
prohibited. 
------------------------------------------------------------------------
----
---------------------------


-----Original Message-----
From: Andrew English [mailto:andrew@xxxxxxxxxxxxxxxxxxxxxx] 
Sent: Tuesday, December 21, 2004 1:03 AM
To: [ExchangeList]
Subject: [exchangelist] RE: New Exchange 2003 server in existing AD/DC
environment

http://www.MSExchange.org/

Hi Mike, 

I was referring to installing Exchange on AD itself, not on a network
running AD, this a big difference. I know when you install Exchange on
the AD itself that a few system policies which are outlined for
administrators are changed so that everyone has access to them, which in
itself is a security problem.

Running Exchange on a Standalone box attached to the AD like you would
normally attach any workstation is the only way to go, do not dcpromo
the Exchange server!

Good luck
Andrew


-----Original Message-----
From: A. M. Salim [mailto:msalim@xxxxxxxxxxxx] 
Sent: Monday, December 20, 2004 8:29 PM
To: [ExchangeList]
Subject: [exchangelist] RE: New Exchange 2003 server in existing AD/DC
environment

http://www.MSExchange.org/

Hi Andrew,

Thanks for your feedback, the Exchange server will be a separate
physical
server, not the same one as that running the AD or GC.  Does that
address
the issue you raised?

As for not installing Exchange 2k3 on a AD for security reasons, I did
not
know there was a way to run Exchange without AD - is it not a basic
requirement for Exchange 2003 that it be installed within an Active
Directory with a Domain Controller and Global Catalog somewhere on the
network?

best regards
Mike

> Installing Exchange 2k3 on a AD is not recommended by Microsoft
because
> of security issues.
>
> With 350 users you may end up tanking the AD if you install Exchange
2k3
> on it. Your client is better off buying another box and installing
> Exchange 2k3 on it to save him/herself problems down the road. I also
> hope they have an efficient backup system already in place.
>
> Regards,
> Andrew

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 ISA Server Resource Site: http://www.isaserver.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this MSEXchange.org Discussion List as:
andrew@xxxxxxxxxxxxxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Report abuse to listadmin@xxxxxxxxxxxxxx


Other related posts: