[SAFC2403]

I've just started in a new job and I've been designated the Blackberry expert because I set up one for a user!!!

I've also discovered that it was running on a domain controller which i've read is not a good idea.

So we have demoted the domain controller that was running our bes and I've found that the users can't get emails anymore!!

Do I have to reassign the permissions for besadmin for our domain again?? I'm certain the mailboxes that use bb's had permissions for besadmin on there but now they appear to have gone.

Help if anyone can please!!!!

Oh and i'm using blackberry manager 4.0.2.8 and exchange 2000 if that helps

[ld-runner]

why not run dcpromo again and re-enter it back into the domain until you can do a cut over to another server?

[CanuckBB]

Is it just BB users that can't get mail or all Exchange users?

Make sure there is another Global Catalog in your network. dcpromo that BES back. There is nothing wrong with BES on a DC. It's Exchange that can be a nightmare on a DC.

[blincoln]

Quote:

Originally Posted by CanuckBB

There is nothing wrong with BES on a DC. It's Exchange that can be a nightmare on a DC.

IMO (and in the opinion of MS' best practices) a DC should be a DC only, not a DC and anything else. No IIS, no BES, and definitely no Exchange or other heavy-weight applications. I realize that some smaller/non-technical shops have the Small Business edition of Windows that puts everything and a DC on one system, but that is really about as far from ideal as you can get.
One of the big reasons for this is the lack of true local groups on a DC. If you have something that requires its service account to be a local admin, and you put it on a DC, now it's a domain admin. If you have a user who you want to give admin rights to the server, they are a domain admin too.

[SAFC2403]

Quote:

Originally Posted by CanuckBB

It's Exchange that can be a nightmare on a DC.

Been told by the IT manager to do it so got no leeway in that respect - I find that comment above a bit scary - I started this job 3 months ago to find the dc - with exchange sitting on it as well!!

As soon as we can get it sorted everything is being seperated out onto different servers as the one we have is creaking at the seams!!

Managed to get it sorted - for some reason the besadmin account lost permissions to the exchange mailboxes - added them back in and all is well - for now......

thanks for the responses.