none
Forefront GAL sync across forests RRS feed

  • Question

  • Hi,

     I've been looking into setting up Exchange GAL sync between 2 separate organizations (Exchange Forests). The requirements are for a 1 way sync (read GAL and update/delete/add contacts to GAL in org B as needed). I know FIM 2010 can do this, but I'm not sure about the requirements\setup.

    Reading the 'before you begin section' at http://technet.microsoft.com/en-us/library/ff512685(v=ws.10) mentions Sharepoint Services & website. 

    Organization A in my scenario is large organization (around 6000 users) and organization B is small, I'd rather avoid installing Sharepoint 2010 if I can help it. Would I need to install and configure Sharepoint 2010 in both organizations for FIM 2010?

    For simplicity I'm looking at alternatives:

    http://www.wapshere.com/missmiis/galsync-v2

    http://www.open-a-socket.com/index.php/2010/12/23/gal-sync-with-quest-quick-connect-express-for-active-directory/

    Thanks


    IT Support/Everything

    Tuesday, July 10, 2012 9:51 PM

Answers

All replies

  • Hi,

    You only require the FIM Synchronization Service in order to achieve this.

    Therefore you do not need the FIM Service (Portal); therefore you do not need any Sharepoint components either.

    Regards,

    SK

    Wednesday, July 11, 2012 12:02 AM
  • Thanks,

    To install FIM sync between 2 organizations, I'm assuming I'd need the client and server component?

    Am I right in thinking I'd need the server in organization A (holds master GAL) and the client in organization B (holds the GAL to be modified)?

    Also, I take it terms of communications between the two organizations, the main things I would need are ports 5725 and 5726 for the client to server communication and the server portal being contactable via https?

    Cheers

     


    IT Support/Everything

    Wednesday, July 11, 2012 7:02 AM
  • Hi,

    Install one FIM Sync server in Org A.

    Setup 2 GALSYNC MAs, one MA to Org A and the other MA to Org B.

    The port you would need open is either LDAP or LDAP over SSL (depending on your security requirements).

    Please take a look at the following resource for all the information & walkthroughs: http://social.technet.microsoft.com/wiki/contents/articles/1726.global-address-list-synchronization-galsync-resources.aspx

    Hope this helps,

    Regards


    • Edited by D Wind Wednesday, July 11, 2012 8:52 AM
    • Proposed as answer by D Wind Thursday, July 12, 2012 11:20 PM
    • Marked as answer by Aetius2012 Sunday, July 22, 2012 10:27 PM
    Wednesday, July 11, 2012 8:49 AM