We want to have one password for their local accounts and Microsoft Outlook accounts. This works fine in the abc.com location because the server is in abc.com. It does not need to authenticate to the server manually, and they can change their own passwords for Windows and Exchange Server. We would like to do the same for our child domains. Do you have any suggestions?
There is a tool that can help you out here; it is called the Active Directory Account Cleanup Wizard. It is included with the Exchange System Tools on the Exchange Server 2003 CD. When you run this tool, it will help you identify duplicate accounts and then let you merge them together into one account. Be careful that the target account is the one in the user's domain. Once the two accounts are merged, then you can use a single username and password.
It is possible to change the User Principal Name (UPN) suffix of you child domains' user accounts to be the same as the root domain. In fact, you can change it to be whatever you like. However, it will not change the actual domain they are in. If your users log on using their UPN (what looks like their email address), then the Domain field should be grayed out. In fact, Windows XP Professional doesn't even have a Domain field with its logon so the domain can be transparent to the end user.
Do you have comments on this Ask the Expert Q&A? Let us know.
Related information from SearchExchange.com:
Dig Deeper on Microsoft Exchange Server Password Management
Related Q&A from Richard Luckett
When you're stumped on how to track email items following a central mailbox move, fix the dilemma by knowing what happens to items in mailboxes when ...continue reading
You can pull out the big guns to manually remove what's left of your failed Exchange Server from Active Directory, but it's best to consider ...continue reading
There are a number of actions to take to implement OWA security, including obvious ones like creating strong password policies. Admins should also ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.