| Home | Kaiming |
Complete AD Configuration Multiple domain principals and Exchange Configuration Multi-Hosting.
The result will be:
When House1.H@house.com opens his mailbox through OWA, the address shows only Global House.
When Ashly.Plaston@issac.com accesses her mailbox through OWA, the address book shows only Global Issac.
When Bob.Preston@Newton.com accesses his mailbox through OWA, he sees only Global Newton address book.
The way to achieve the above result is as follows:
Set-OwaVirtualDirectory -Identity 'owa (Default Web Site)' -AllAddressListsEnabled $false
Open ADSIedit.msc utility
Set the msExchQueryBaseDN attribute of All Mailbox Users under the Newton OU to:
CN=Global Newton,CN=All Global Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=Work,DC=com
Set the msExchQueryBaseDN attribute of All Mailbox Users under the Issac OU to:
CN=Global Issac,CN=All Global Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=Work,DC=com
Set the msExchQueryBaseDN attribute of All Mailbox Users under the HOUSE OU to:
CN=Global House,CN=All Global Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=Work,DC=com
It is a tedious job to modify the msExchQueryBaseDN attribute of each mailbox user.
To solve this issue, modify the AD schema;
regsvr32 C:\WINDOWS\system32\schmmgmt.dll
Because the msExchQueryBaseDN attribute can be copied when duplicating a user, we create new mailboxes with template.
Method 1:
The attributes (Company, msExchQueryBaseDN, and MemberOf) are copied.
Create a new user account --Jim Flether by copying the George Allistair user in AD Users and Computers.
Then, create a mailbox for Jim Flether
Enable-Mailbox -Identity 'work.com/House OU/Jim Flether' -Alias 'Jim Flether' -Database 'EX20071\First Storage Group\House'
Method 2:
$template=Get-Mailbox "Ashly Plaston"
$password=Read-Host "Enter Password" -asSecureString
$firstName="Darton"
$lastName="Rosery"
$company=Issac
New-Mailbox -Name "$firstName $lastName" -Alias "$firstName.$lastName" -OrganizationalUnit "work.com/Issac OU" -UserPrincipalName "$firstName.$lastName@Issac.com" -SamAccountName "$firstName.$lastName" -FirstName $firstName -initials "" -LastName $lastName -Password $password -Database "Ex20071\First Storage Group\Issac" -TemplateInstance $Template
dsmod group "CN=UG_Issac,OU=Issac OU,DC=Work,DC=Com" -addmbr "CN=$firstName $lastName,OU=$company OU,DC=Work,DC=Com"
dsget group "CN=UG_Issac,OU=$company OU,DC=Work,DC=Com" -members
With -TemplateInstance parameter, a new mailbox user does not join the group that the templateInstance mailbox user belongs to. The Active Directory command dsmod will add the new user to the same group that the templateInstance mailbox user belongs to.