Hello everyone,
I need to re-do our AD environment here and the reason is because the previous Administrator has created so many bad settings, it is now taking band-aids upon band-aids to fix them, which then only creates more issues. I am wondering, what the best route would be to implement a completely brand new AD environment, while the old one exists.
My thoughts are, I first build the new DC, and allow a trust between domain.org(old broken AD) and domain.local(New Perfect AD.) I then take the users from domain.org and carry over to domain.local. I then can prepare the new AD for exchange and then point exchange to use the new domain(this is in theory, which seems to be broken) I will most likely have to rebuild exchange. I do at least want to move user mailboxes over with the user objects in the old domain.
Anyone have any suggestions? I am perfectly fine with building the new DC and manually going to each PC and re-joining them to the new domain. But with the trust, I was thinking I could just give them the new domain name and have them log in via domain.local\username.