How To Install and Configure the Active Directory Connector in Exchange 2000 Server

This article explains how to ensure a common global address list for all users. To do this, you need to synchronize the directories.

To Install and Configure the ADC

To enable directory synchronization, install the Active Directory Connector (ADC), and then configure user connection agreements.

Install

1. Click Start, click Run, and then click Browse to display the Browse dialog box.
2. Insert the Exchange 2000 Server CD in the CD-ROM or DVD-ROM drive, double-click the CD-ROM or DVD_ROM drive, double-click the ADC folder, and then open the i386 folder.
3. Click the Setup file, and then click Open.
4. In the Run dialog box, click OK to start the Microsoft Active Directory Connector Setup Wizard.
5. On the Welcome screen, click Next.
6. In the Component Selection screen, click to select the Microsoft Active Directory Connector Service Component and Microsoft Active Directory Connector Management Components check boxes, and then click Next.
7. In the Install Location screen, specify the services account of your Exchange Server 5.5 services. Type the appropriate password under Account Password, and then click Next to start the installation process.
8. In the Completing the Active Directory Connector Installation wizard screen, click Finish.

Configure

1. In the Microsoft Exchange program group, start Active Directory Connector.
2. In the console tree, right-click Active Directory Connector, click New, and then click Recipient Connection Agreement.
3. On the General tab, under Name, give the connection agreement an appropriate name.
4. Under Replication Direction, click Two-way, and then, in the Microsoft Active Directory Connector Management dialog box, click OK.
   
   The Microsoft Active Directory Connector Management dialog box appears to inform you that the Connection Agreement must now write to the Exchange directory, which requires a service account that has appropriate permissions.
5. Click the Connections tab, and then verify that a Windows 2000 domain controller is listed under Windows Server Information and that the Authentication mechanism is Windows Challenge/Response.
6. Under Connect As, click Modify, and then in the Connect As (Windows Server) dialog box, under Connect As, click Browse to select the Administrator account.
7. Under Password, type the password, and then click OK.
8. Under Exchange Server Information, in the Server box, type the name of the Exchange 5.5 server.
9. Under Port, the port number will depend on which port the Lightweight Directory Access Protocol (LDAP) service of the 5.5 server is listening on. If the server is not a Windows 2000 domain controller, and the port has not been changed, it will be 389. If it is either a Windows 2000 domain controller or the port has been changed for any reason, use the correct port number. To determine the port number:
   
   
   1. Start Exchange Administrator.
   2. Expand Organization, expand Site, expand Servers, expand the Exchange 5.5 server, and then expand Protocols.
   3. Right-click the LDAP object, and then click Properties to see the port number.
   To verify this number:
   
   
   1. Run Ldp.exe from the Windows 2000 support tools, which you can find on the Windows 2000 Server CD.
   2. Click Connection.
   3. Click Connect.
   4. Type the name of the Exchange 5.5 server and the LDAP port number you believe it is listening on.
   You will see something similiar to this (it may be wrapped):

   ld = ldap_open("Server", 389);
   Established connection to Server.
   Retrieving base DSA information...
   Result <0>: (null)
   Matched DNs: 
   Getting 1 entries:
   >> Dn: 
   	1> currentTime: <ldp error <0xc000000d>: cannot format time field; 
   	1> subschemaSubentry: cn=Aggregate,cn=Schema,cn=Configuration,ou=Exchange Site,o=Exchange Organization; 
   	5> namingContexts: ou=_ABViews_,o=Exchange Organization; cn=Configuration,ou=Exchange Site,o=Exchange Organization; cn=Microsoft DMD,ou=Exchange Site,o=Exchange Organization; ou=Exchange Site,o=Exchange Organization; o=Exchange Organization; 
   	1> defaultNamingContext: o=Exchange Organization; 
   	3> supportedControl: 1.2.840.113556.1.4.319; 1.2.840.113556.1.4.417; 1.2.840.113556.1.4.529; 
   	2> supportedVersion: 3; 2; 
   	1> highestCommittedUSN: 4097;
   						

   It is important to read the above context and make sure it is your Exchange Organization, and not a Windows 2000 Organization.
10. Under Connect As, click Modify.
11. In the Connect As (Exchange Server) dialog box, under Connect As, click Browse to select the Administrator account.
12. Under Password, type the password, and then verify that the properties are configured correctly.
13. Click the Schedule tab, click Always for the replication schedule, and then click to select the Replicate The Entire Directory The Next Time The Agreement Is Run check box.
14. Click the From Exchange tab, and then click Add to specify a recipient container to take updates from.
15. In the Choose A Container dialog box, expand the organization, click Recipients, and then click OK.
16. Under Default Destination, click Modify.
17. In the Choose A Container dialog box, click Users, and then click OK.
18. Click the From Windows tab, and then click Add to specify an organizational unit (OU) to take updates from.
19. In the Choose A Container dialog box, click Users, and then click OK.
20. Under Default Destination, click Modify. In the Choose A Container dialog box, click Recipients, and then click OK.
21. Click to select the Replicate Secured Active Directory Objects To the Exchange Directory check box, and then click OK.
22. In the Microsoft Active Directory Connector Management dialog box, which appears to inform you that this is the first intra-organizational Connection Agreement, click OK.
23. In the Microsoft Active Directory Connector Management dialog box, which appears to inform you that your Windows domain operates in mixed mode, click Yes.
24. In the Microsoft Active Directory Connector Management dialog box, which appears to inform you that security groups have been created for the Exchange 2000 Service, click OK.
25. Quit the Active Directory Connector Management console.