Question : Windows/Exchange 2000 to Windows 2008/Exchange 2007 Upgrade

Hi,

I am planning my AD and Exchange upgrade and would like some help fine-tuning/critiquing the steps to reduce the probability of screwing up.
I have read many questions on this site as well as others and although some scenarios are similar they are obviously not exactly the same.

Current setup is as follows:
* Windows 2000 AD (DC1, DC2 & XMAIL)
* Exchange 2000 BE (XMAIL)
* Exchange 2003 FE (OWA - in DMZ)

By the end of the process I would like the following:
* DC1 will have been upgraded to 2008 Server
* XMAIL will have been transitioned to 2007 on a new 2008 server
* DC2 will be replaced by a new 2008 server down the track.
* FE to be moved to a new 2008 server as legacy apps also run on this.

We are in the same site as 3 other offices each with separate domains. All DNS is AD integrated except one primary zone held by our Head Office. We also

have bulk email software which uses OWA to send out through.

Things I'm unsure about:
* The damn 2007 server roles. Not exactly sure what configuration to go with. Ideally I would like a similar scenario (FE/CAS in dmz and BE/Mailbox inside if

possible).
* How to allow bulk emails to send out through CAS server.

I am worried about coming into trouble with rights due to FSMO roles, replication (between 2000 and 2008 AD), and the public folder move.

Any help is greatly appreciated.

Steps planned thus far:

AD UPGRADE
1.      Ensure Exchange server skips the discovery process by hard-coding DSAccess (to look at itself).
2.      Ensure AD replication is running correctly (Replmon).
3.      Make sure AD backups ran successfully.
4.      Prep domain for 2008 (2008 dvd; \Sources folder). Should be run on DC1, hopefully we dont have trouble due to not owning the schema master role.
a.      Adprep /forestprep
b.      Adprep / domainprep
c.      Adprep /gpprep
5.      Install Windows Server 2008 on new server (MAIL) and join to domain as member server
6.      Promote MAIL to domain controller
7.      Make MAIL a GC
8.      Install DNS on MAIL (have HEAD OFFICE add new DC to zone transfer list for the primary zone they host)
9.      Make sure AD and DNS replicate correctly
10.      Test DNS through MAIL
11.      Change DCHP scope settings on DC2 (as well as NICs on all servers) to point to MAIL for DNS
12.      Transfer FSMO roles to MAIL.
a.      Transfer RID, PDC and Infrastructure roles via AD Users and Computers
b.      Wait 24 hours for replication
13.      Demote DC1 via DCPROMO
14.      Install Windows Server 2008 on DC1 and join to domain as additional DC
15.      Install DNS and DHCP on DC1, set up DHCP scope and Authorize DC1 as a DHCP server
16.      De-activate DHCP on DC2 and unplug from the network
17.      Activate DHCP scope on DC1
18.      If DHCP is working correctly; demote DC2 via DCPROMO

EXCHANGE UPGRADE
1.      Install Windows Server 2008 on new 64bit server (CAS)
2.      Run the Exchange Best Practices Analyzer to verify the environment is ready
3.      Prepare legacy Exchange permissions
a.      Run setup.com /PrepareLegacyExchangePermissions
4.      Prepare the Schema
a.      Run setup.com /PrepareSchema
5.      Prepare Active Directory
a.      Run setup.com /PrepareAD
6.      Prepare the Domain
a.      Run setup.com /PrepareDomain
7.      Install the following software/updates:
a.      Microsoft .NET Framework V2.0
b.      MMC 3.0
c.      Windows PowerShell V1.0
8.      Make sure the following are enabled:
a.      WWW Service
b.      ASP.NET V2.0
9.      Run setup.exe and being installation
a.      Enable error reporting
b.      Configure Mail Flow Settings to point to XMAIL
c.      Select the custom installation and choose Client Access and Hub Transport
d.      Review logs once setup has completed
10.      Run the Exchange Best Practices Analyzer to verify the environment is ready
11.      Enter license key
12.      Configure Client Access on Exchange 2007
13.      Configure firewall for correct port forwarding/opening
14.      Test OWA access, if successful redirect OWA traffic to CAS
15.      Configure SMTP relay for bulk emails by setting up a receiver connector (http://technet.microsoft.com/en-us/library/bb232021(EXCHG.80).aspx)
16.      Test bulk emails, if successful remove Exchange from OWA
17.      Log on to MAIL and run the Exchange Best Practices Analyzer to verify the environment is ready
18.      Install the following software/updates:
a.      Microsoft .NET Framework V2.0
b.      MMC 3.0
c.      Windows PowerShell V1.0
19.      Make sure the following are enabled:
a.      WWW Service
b.      ASP.NET V2.0
20.      Install Exchange on MAIL
a.      Enable error reporting
b.      Configure Mail Flow Settings to point to XMAIL
c.      Select typical installation
d.      Review logs once setup has completed
21.      Enter license key
22.      Configure accept smtp domains:
a.      Organization Configuration Hub Transport New Accepted Domain
23.      Replicate Public Folders:
a.      On XMAIL go to the Replication tab of the Public Folder properties and add MAIL to the replica list.
24.      Move public folders:
a.      On XMAIL go to FirstAdministrativeGroup->Folders->Public Folders->Our Public Folders, right-click->Properties->add MAIL to replication tab

I'm not sure at this point whether this will work or if I need to use the migration script; ttp://technet.microsoft.com/en-us/library/bb331970(EXCHG.80).aspx

25.      Move the OAB
a.      In Exchange 2007 go to Organization Configuration->Mailbox->Offline Address Book, Right-click->Default Offline Address List->Move
26. Move Mailboxes to Exchange 2007 server
a.      In Exchange 2007 go to Recipient Configuration->Mailbox, highlight the mailboxes and click on Move Mailbox...
b.      Follow the steps and once it has completed check the mail flow
27.      Redirect all mail traffic to MAIL
28.      Decommission XMAIL
a.      Assign Recipient Update Service to MAIL->Recipient Update Service (domain)->Properties->Browse->Exchange 2007 Server
a.      Remove from XMAIL via add/remove programs

Answer : Windows/Exchange 2000 to Windows 2008/Exchange 2007 Upgrade

Yes, you can have any role on one or more servers - just install it through the Exchange interface. Exchange 2007 is designed to be modular, so if you want two HT servers, just put the role on two, and if you want 3 mailbox servers, you just install the role on them. There is no issue with having two Hub Transport servers on a network.

The approach you mention is plausible - and one I highly recommend. Keeping your mass-mailing software away from your main IP used for sending and receiving regular email is always a good approach, since you can protect yourself as much as you like, but can guarantee with mass-mails that somehow you will be blacklisted (and of course, if it is unsolicited, you will instantly get blacklisted, but I hope it isn't spam!). This way, regular mail still works and it is just mass-mailing which will be down.

Don't forget: if your new Exchange 2007 server is powerful enough, you could always virtualise the second HT / CAS role in a virtual machine on that same hardware, rather than purchase more hardware when its power really won't be used to the full extent that it could be. If all it is doing is CAS and a bit of HT for mass-mailing, that's not much load or RAM required, so there's no reason why it couldn't be virtualised.

-Matt

Random Solutions

Adding 2003 DC to 2000 Domain

Windows Server 2003 FTP access question

Use bash script to move all files in home directories.

What's your recommendation for the best macro software?

Installing MS SQL Server - no services

Windows vista and 7 C drive permissions

Sendmail not accepting connections outside corporate network

Moving DNS & WINS from one Windows 2003 server to Another 2003 Server

bugcheck reboot