locked
Distribution Groups across forests don't work RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    I've created a two-way trust between two forests, which works fine for authentication to shares, apps and the like. However, I cannot get Distribution Groups to work. What I'm trying to achieve is: mail sent to one DG in forest 1 to be forwarded/copied/sent to another DG in forest 2. The way I'm trying to do this is create a Global Distribution Group in forest 2 and add  Universal Groups from forest 1 to this group. The ADUC allows me to do this, but when I try to send mail to the Global DG, it's only delivered to the DG members in the original forest (2). It's like the members from the other forest are completely ignored.

    Also, I can't add any users from forest 1 to mailboxes or DGs in forest 2 or vice versa. This is probably by design, but if there's a way to do this, that would be very helpful. It would allow us to share calendars and mailboxes across forests.

    Thanks!

    [edit: oh crêpe, I should have posted this in the Exchange 2010 section as both Exchange orgs are at EX2010 SP3 RU4 - both forests at 2008 R2 functional level]

    Thursday, January 16, 2014 12:58 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    First, please make sure the universal DG in forest 1 is mail-enabled. In order to narrow down the issue, please enable message tracking and check if the users in universal DG have received message .

    If there is any update, please post here for further research.

    Best regards,
    Belinda

     

    Belinda Ma
    TechNet Community Support



    • Edited by Belinda Ma Friday, January 17, 2014 9:52 AM
    Friday, January 17, 2014 9:21 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    GAL synchronization should be in place between these two forest (two Exchange organization). If this is in place, you will have cross-forest mail contacts for recipients from the remote forest. Than you can add the relevenat cross-forest mail contact  as member of the DG group.

    Exp: ADATUM.com -forest 1, dg1@adatum.com DG1

    CONTOSO.com -forst 2, dg2@contoos.com  DG2

    After you set up GAL synchronization with Forfront Identity Manager (FIM) you will have cross-forest mail contact dg1@adatumc.om authomatically created in forest2. This should be added as member in DG2.

    If you don't need GAL sync and FIM, simply you can create a mail enabled contact in forest2 and set dg1@adatum.com as external address. Than add this mail enabled contact member of DG2.

    Friday, January 17, 2014 10:04 AM