|
NevergirlsOFFICIAL posted:Ok so you're saying don't decom and make it someone else's problem There is no harm in leaving those legacy Exchange attributes in there as they don't negatively affect O365.
|
# ? Mar 8, 2016 16:56 |
|
|
# ? Apr 24, 2024 08:03 |
|
SeaborneClink posted:
Will Styles posted:In O365 the EmailAddresses property is just an array of strings, so there's no smtpaddress property to return. Unfortunately, I don't think there's a way to do what you want with select. You can use a for-each loop though to get basically the same info. code:
|
# ? Mar 8, 2016 17:16 |
|
anthonypants posted:That's going to be difficult if you're missing a double-quote and replaced it with an extra curly brace. His code (completed) and my code returns something like the below, which I assumed was his intention User1 - mail1@domain.com User1 - mail2@domain.com User1 - mail3@domain.com User2 - mail4@domain.com User2 - mail5@domain.com Yours outputs User1 - mail1@domain.com mail2@domain.com mail3@domain.com User2 - mail4@domain.com mail5@domain.com If your output fits his needs then that's great, it'll definitely run faster than what I provided. Will Styles fucked around with this message at 17:36 on Mar 8, 2016 |
# ? Mar 8, 2016 17:30 |
|
anthonypants posted:That's going to be difficult if you're missing a double-quote and replaced it with an extra curly brace. Indeed I was, however that did not return the intended results, it's still null. Will Styles posted:His code (completed) and my code returns something like the below, which I assumed was his intention I am in fact trying to get a result of: User1 - mail@domain.com User1 - mail@domain2.com User1 - mail@domain3.com User2 - mail@domain.com User2 - mail@domain2.com User3 - mail@domain.com Will Styles your snippet gets me the closest to what I wanted and I can just fix in Excel. Thank you so much and I will try to post better in the future.
|
# ? Mar 8, 2016 20:44 |
|
Thanks Ants posted:Exactly this This has been confirmed by a friendly MS support guy. Next question! I have a handful of failed mailboxes in the mig batch. They failed because they aren't using the email address policy and therefore didn't get the @poop.onmicrosoft.com proxy SMTP address. Once a mailbox fails, will it try it again? After I add the correct SMTP address and let it sync, will it attempt it again? Or do I need to create a new mig batch?
|
# ? Mar 9, 2016 16:16 |
|
Pretty sure you can resume the migration batch and it will try it again. I don't think it'll do it on it's own automatically but I could be wrong.
|
# ? Mar 9, 2016 16:24 |
|
NevergirlsOFFICIAL posted:This has been confirmed by a friendly MS support guy. It may try again, but I think it will fail. I think I remember having to remove the user object from dirsync and delete the mailbox in o365 and they try it again.
|
# ? Mar 9, 2016 20:10 |
|
This may be a dumb question, and I'm probably going to mince the words, but here goes. I'm cleaning up a after an 2010 -> O365 migration and have been tasked with auditing permissions on old mailboxes and matching my butt counterparts. I'd like to preserve userPrincipalName from Get-Mailbox, and pass it forward to the end of my pipeline to use in my Export, as the Identity property from Get-MailboxPermission obviously doesn't match the O365 instance name of the mailbox. My get+export code:
code:
code:
SeaborneClink fucked around with this message at 00:39 on Mar 10, 2016 |
# ? Mar 10, 2016 00:34 |
|
SeaborneClink posted:Thoughts? It might be easier to consider looking for a tool that will do this for you. Most migration products out there will also copy over permissions so there may be something you can use to do this. Avoid re-inventing the wheel etc. If you want to do this on your own you may be able to get away with simply modifying the csv file you're making to remove the domain/ou information from the identity. So for your example remove "contoso.local/Contoso - User Accounts/Resource Mailboxes/" from the CSV file so you're left with code:
Also when you're exporting your permissions, you're pulling anyone who has any type of permission Read, Write, Full Access, etc. and giving them Full Access regardless of what they had. This may be your intention, but if not you can also export the access rights into your csv and set them when you re-import. Or if you only want to export full access permissions I'd add that into your where clause "-and $_.AccessRights -like '*full*' "
|
# ? Mar 10, 2016 02:27 |
|
mayodreams posted:It may try again, but I think it will fail. I think I remember having to remove the user object from dirsync and delete the mailbox in o365 and they try it again. It looks like completely stopping the batch, then starting it again, worked.
|
# ? Mar 10, 2016 04:47 |
|
I'm trying to demo ADFS SSO for office 365 in a hybrid deployment in my home lab. I've got a public UCC certificate that includes mail, autodiscover, adfs and www. Will I need to dedicate a SAN for my adfs web proxy? I've read a few blogs regarding this and it seems implied that no I do not, but nothing definite.
|
# ? Mar 12, 2016 07:47 |
|
Hey dudes why, when I open Outlook after migrating the mailboxes to Office 365, I'm getting a cert error for old_onprem_server.poop.LOCAL? Obviously I don't have .local in my SSL. But activesync, OAB, OWA all have virtual directory URL as mail.poop.com. Where's it getting the .LOCAL from? (hybrid 2010/exchange online) edit to clarify: after I relaunch outlook it goes to exchange online correctly with no cert warning. Just wondering why it's trying to refer to .local at all. Dans Macabre fucked around with this message at 02:39 on Mar 13, 2016 |
# ? Mar 12, 2016 22:24 |
|
Can't remember the PowerShell command but run the one that lists the autodiscover endpoints being returned.
|
# ? Mar 13, 2016 00:23 |
|
NevergirlsOFFICIAL posted:Hey dudes why, when I open Outlook after migrating the mailboxes to Office 365, I'm getting a cert error for old_onprem_server.poop.LOCAL? Obviously I don't have .local in my SSL. But activesync, OAB, OWA all have virtual directory URL as mail.poop.com. Where's it getting the .LOCAL from? Could a mailbox be using an old UPN?
|
# ? Mar 13, 2016 01:04 |
|
Thanks Ants posted:Can't remember the PowerShell command but run the one that lists the autodiscover endpoints being returned. If that doesn't show any .local domains you can also hold Ctrl and right-click the Outlook icon in the systray and run the email autoconfiguration tester from the client machine.
|
# ? Mar 13, 2016 01:21 |
|
anthonypants posted:I don't know the PowerShell one but there's the remote connectivity analyzer https://testconnectivity.microsoft.com/ yeah it works 100% fine with brand new profile it's just the first time you run the old profile it does that. I'll check rpcdiag on a another computer once I have access to one of those
|
# ? Mar 13, 2016 02:42 |
|
NevergirlsOFFICIAL posted:Hey dudes why, when I open Outlook after migrating the mailboxes to Office 365, I'm getting a cert error for old_onprem_server.poop.LOCAL? Obviously I don't have .local in my SSL. But activesync, OAB, OWA all have virtual directory URL as mail.poop.com. Where's it getting the .LOCAL from? I just dealt with this since we just sold our domain name and I had to change all the autodiscover/owa/etc... entries. On a few PCs, I found that they never, ever picked up the new name changes, no matter how many times you restart Outlook/PCs/etc... Even repairing the Outlook profile did nothing. Launch Outlook, and get a cert mismatch a few minutes later referencing the old hostname. Turns out that Outlook caches the autodiscover hostname, which is cool, but in some cases it will never actually attempt to use the new autodiscover hostname, unless the old hostname is inaccessible. I pulled my hair out on this for weeks, and once I removed the internal DNS entries for the old hosts, every PCs that was still prompting was fixed. 95% of the PCs were like you've noticed, prompt at first launch of Outlook, fine after that. Again, it's related to the caching of the autodiscover server, but at least in this case it saw the new name, and updated itself to use it. Only other fix I could find was creating a new Outlook profile. Every other fix I found online did nothing, even ones that specifically said they would fix this problem.
|
# ? Mar 14, 2016 05:37 |
|
NevergirlsOFFICIAL posted:yeah it works 100% fine with brand new profile it's just the first time you run the old profile it does that.
|
# ? Mar 14, 2016 10:56 |
|
Cool thank you dudes. I think I came across one of those needs-a-new-profile people. One weird thing I noticed is that a bunch of spam is still trying to hit (and getting blocked by) the old on-prem spam filter. My guess here is that these spammers just don't respect the TTL on my MX records. I'm not seeing any legit mail try to go through the old filter so I don't really care.
|
# ? Mar 14, 2016 16:14 |
|
I feel like I'm going round in circles, but does anyone have a guide for configuring Office 365 to auth people against a SAML provider? I have the directory sync all working happily, but all the TechNet documentation seems to mention setting up ADFS which sounds like it's the wrong way to go.
|
# ? Mar 16, 2016 00:24 |
|
Stick with dirsync unless you really need password writeback.
|
# ? Mar 16, 2016 02:44 |
|
incoherent posted:Stick with dirsync unless you really need password writeback. I fought tooth and nail with ADFS to make it work. It's not worth it unless you already have ADFS setup for another purpose. Then it might go alot easier for you.
|
# ? Mar 16, 2016 13:53 |
|
I just set up a hybrid office 365 deployment with adfs for SSO for fun. It's so cool. I can watch the redirects and watch everything bounce around. Just thinking of how many complex processes are taking place in the instant I click to login is making me giddy with excitement. Wasn't as bad as everyone said it would be. What I've got is a pretty hacky lab set up though which is probably not actually appropriate for production. Might be because I used the new AD Connect instead of dirsync as well. Methanar fucked around with this message at 06:20 on Mar 17, 2016 |
# ? Mar 17, 2016 05:56 |
|
It's because you weren't setting up hybrid where the on-premise element was an Exchange 2010 box that had been improperly upgraded from 2003 to 2007 and then best practises had once again been ignored when going from 2007 to 2010. Every error I hit in the last hybrid deployment I did was poo poo that should have been resolved six years previously.
|
# ? Mar 17, 2016 09:02 |
|
Thanks Ants posted:It's because you weren't setting up hybrid where the on-premise element was an Exchange 2010 box that had been improperly upgraded from 2003 to 2007 and then best practises had once again been ignored when going from 2007 to 2010. Every error I hit in the last hybrid deployment I did was poo poo that should have been resolved six years previously. This is like half the problems Ive encountered in any O365 Hybrid migration: Some knobgoblin went "eh" on a decision in the 2003-2007 era, and then everyone in the next decade either ignored it, didn't know how to fix it properly, or perpetuated the mistake because 'thats how we always did it'. End result is that a mistake survives, never gets corrected, and blood gets shed in 2016 to finally fix it when its now a crisis that mailboxes aren't moving right. I had one recently where someone just guessed at what an email alias should look like in 1998 and never looked back through 18 years of subsequent upgrades, and somehow managed to make the exact decisions to keep anything from rejecting the bad attributes in the process. Combing through your environment for the guts of bad decisions and halfassed decomissions before making the move really, really helps. That and having UPNs match people's primary SMTP, those two things eliminate the vast majority of issues you run into with a hybrid config.
|
# ? Mar 25, 2016 03:20 |
|
- User who is an employee of our ChildCo needed to have an email address of our ParentCo for a project - I made a shared mailbox with the needed address, gave her Send As permission on it, added it to her Outlook (it shows up below her ChildCo mailbox) - Showed her how to use the From: button when sending messages, she's been doing that - Problem: every message, whether in Inbox or Sent Items, doesn't appear in her ParentCo shared mailbox. Instead they're all in her ChildCo mailbox I've never seen this before, but before I was used to 365 shared mailboxes. This is an on-prem Exchange 2013 server and she uses Outlook 2013.
|
# ? Mar 25, 2016 05:16 |
|
Wilford Cutlery posted:- User who is an employee of our ChildCo needed to have an email address of our ParentCo for a project I ran into this exact problem with one of my customers. The fix is to connect to powershell and do this. quote:For emails Sent As the shared mailbox: set-mailbox <mailbox name> -MessageCopyForSentAsEnabled $True Source: http://blogs.technet.com/b/exchange/archive/2015/03/03/want-more-control-over-sent-items-when-using-shared-mailboxes.aspx
|
# ? Mar 25, 2016 12:08 |
|
Beefstorm posted:I ran into this exact problem with one of my customers. The fix is to connect to powershell and do this. Awesome, thanks. I'll try that this morning. I was afraid I'd have to set a bunch of rules instead.
|
# ? Mar 25, 2016 14:42 |
|
Wait a minute, is this only for Sent Items? Because the problem is also happening to Inbox items (received mail).
|
# ? Mar 25, 2016 15:08 |
|
Wilford Cutlery posted:Wait a minute, is this only for Sent Items? Because the problem is also happening to Inbox items (received mail). How is the additional mailbox configured in Outlook? Is it added under the primary mailbox as an additional mailbox under the Advanced tab of the mailbox properties or is it added under the account settings with one of the two mailboxes defined as a default delivery location?
|
# ? Mar 25, 2016 15:58 |
|
The Electronaut posted:How is the additional mailbox configured in Outlook? Is it added under the primary mailbox as an additional mailbox under the Advanced tab of the mailbox properties or is it added under the account settings with one of the two mailboxes defined as a default delivery location? The former.
|
# ? Mar 25, 2016 16:04 |
|
Check your mail delivery rules on that shared mailbox... Sounds like it's forwarding to her.
|
# ? Mar 29, 2016 02:18 |
|
It only happens in Outlook. All the emails are in the right place if she logs into the mailbox in OWA. Yesterday at her request I set up an alternate Outlook profile for it, she is happy with that instead.
|
# ? Mar 29, 2016 14:46 |
|
Wilford Cutlery posted:It only happens in Outlook. All the emails are in the right place if she logs into the mailbox in OWA. Yesterday at her request I set up an alternate Outlook profile for it, she is happy with that instead. That actually raises one angle to look at: Does it happen in a full out fresh outlook profile, or on Outlook on another system? It sounds like she's managed to get some consolidated 'all my inboxes in one' view really, and if you can isolate it to the client or that client's specific config, that might be your smoking gun.
|
# ? Mar 29, 2016 15:23 |
|
So our backups snapshot causes the primary Exch2013 server to fall out of the DAG, making all 10 DBs active on the secondary server (activation preference should split them evenly). After backups complete, the primary server doesn't always pick back up the DBs it should. I've got an open ticket with Veeam, but in the mean time I want to run the PS script to re-balance the DBs every morning, but I can't seem to get it working as a Scheduled Task. Anyone know why this wouldn't work? Also, is it a bad idea to automate the re-balance? The task runs powershell.exe with admin creds and these arguments: quote:-command ". 'c:\Program Files\Microsoft\Exchange Server\V14\bin\RemoteExchange.ps1'; Connect-ExchangeServer -auto;. 'c:\Program Files\Microsoft\Exchange Server\V14\Scripts\RedistributeActiveDatabases.ps1' -DagName DAG01 -BalanceDbsByActivationPreference -confirm:$false" ZetsurinPower fucked around with this message at 17:22 on Mar 31, 2016 |
# ? Mar 31, 2016 17:19 |
|
Or you could adjust the failoversubnetdelay to account for the snapshot stun period to prevent failover from happening at all. http://kevingreeneitblog.blogspot.com/2010/11/increase-exchange-2010-dag-failover.html
|
# ? Mar 31, 2016 17:39 |
|
devmd01 posted:Or you could adjust the failoversubnetdelay to account for the snapshot stun period to prevent failover from happening at all. Yep, I've already maxed out both of those values. It still drops from the cluster.
|
# ? Mar 31, 2016 18:01 |
|
Does anyone have any idea why external email senders wouldnt get an NDR from Exchange if they sent to a recipient who doesnt exist? I've confirmed that I have NDRs enabled and internally if I send to someone who doesnt exist I get a bounceback but when I test from my gmail account I get no message.
|
# ? Apr 18, 2016 19:52 |
|
Do you have Mimecast or an equivalent sitting in front of your Exchange server that is just dropping them silently?
|
# ? Apr 18, 2016 20:28 |
|
|
# ? Apr 24, 2024 08:03 |
|
That's all I can think of as well. We use AppRiver, but AppRiver usually sends the NDR if you hit it with an address that doesn't exist on the exchange server. So maybe a config in your similar system is broken?
|
# ? Apr 18, 2016 21:32 |