Office 365 AD sync - Distribution lists for Office 365

%3CLINGO-SUB%20id%3D%22lingo-sub-358084%22%20slang%3D%22en-US%22%3EOffice%20365%20AD%20sync%20-%20Distribution%20lists%20for%20Office%20365%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-358084%22%20slang%3D%22en-US%22%3E%3CP%3EWe%20are%20using%20AD%20connect%20password%20hash%20only.%3C%2FP%3E%3CP%3EWhat%20is%20the%20best%20practice%20for%26nbsp%3BDistribution%20lists%20for%20Office%20365%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E1.%20Office%20365%20AD%20sync%20-%20create%20distribution%20group%20from%20AD%3CBR%20%2F%3E2.%20Create%20distribution%20group%20directly%20in%20Exchange%20online%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3Etnx%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-358084%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-359409%22%20slang%3D%22en-US%22%3ERe%3A%20Office%20365%20AD%20sync%20-%20Distribution%20lists%20for%20Office%20365%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-359409%22%20slang%3D%22en-US%22%3EMake%20sure%20the%20OU%20that%20contains%20the%20DL%20on%20premises%20is%20synced%20in%20AADConnect%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-358108%22%20slang%3D%22en-US%22%3ERe%3A%20Office%20365%20AD%20sync%20-%20Distribution%20lists%20for%20Office%20365%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-358108%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F61448%22%20target%3D%22_blank%22%3E%40Marvin%20Oco%3C%2FA%3E%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAre%20you%20using%20Exchange%20Hybrid%20%3F%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EIf%20so%20you%20need%20to%20create%20the%20Distribution%20Group%20On-Premises%20and%20AD%20Sync%20will%20replicate%20to%20Exchange%20Online.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-768381%22%20slang%3D%22en-US%22%3ERe%3A%20Office%20365%20AD%20sync%20-%20Distribution%20lists%20for%20Office%20365%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-768381%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F157%22%20target%3D%22_blank%22%3E%40Brian%20Reid%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHey%20Brian%2C%20I%20have%20entered%20the%20DL%20information%20in%20Azure%20Connect%20in%20the%20Metaverse%20Search%2C%20and%20I%20have%20added%20the%20necessary%20attributes%20to%20the%20DL%20object%20in%20AD.%20The%20DL%20is%20still%20not%20syncing%20with%20Office%20365%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1067853%22%20slang%3D%22en-US%22%3ERe%3A%20Office%20365%20AD%20sync%20-%20Distribution%20lists%20for%20Office%20365%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1067853%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F380344%22%20target%3D%22_blank%22%3E%40Dave_Crook%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%3CP%3Eyou%20need%20to%20fill%20in%20the%20attributes%20on%20the%20object%3A%20displayname%20and%20mail%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EFurthermore%3A%20I%20have%20another%20question%20as%20well.%3C%2FP%3E%3CP%3EBy%20default%20only%20internal%20(authenticated)%20senders%20are%20allowed%20to%20send%20e-mails%20to%20the%20distribution%20group.%20however%2C%20when%20you%20set%20it%20up%20like%20this%2C%20using%20on%20prem%20AD%20with%20Azure%20AD%20connect%2C%20external%20senders%20as%20allowed%20to%20send%20e-mail%20as%20well.%3C%2FP%3E%3CP%3EAfter%20some%20Googling%20I%20found%20that%20there%20is%20an%20attribute%20you%20can%20set%20as%20well%3A%26nbsp%3BmsExchRequireAuthToSendTo%3C%2FP%3E%3CP%3EHowever%2C%20I%20don't%20see%20this%20attribute.%3C%2FP%3E%3CP%3EAny%20ideas%3F%20You%20can't%20change%20this%20in%20O365%20since%20it's%20a%20an%20on%20prem%20AD%20synced%20group.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Super Contributor

We are using AD connect password hash only.

What is the best practice for Distribution lists for Office 365?

 

1. Office 365 AD sync - create distribution group from AD
2. Create distribution group directly in Exchange online

 

tnx

4 Replies
Highlighted

Hi @Marvin Oco,

 

Are you using Exchange Hybrid ?

 

If so you need to create the Distribution Group On-Premises and AD Sync will replicate to Exchange Online.

Highlighted
Make sure the OU that contains the DL on premises is synced in AADConnect
Highlighted

@Brian Reid 

 

Hey Brian, I have entered the DL information in Azure Connect in the Metaverse Search, and I have added the necessary attributes to the DL object in AD. The DL is still not syncing with Office 365

 

Thank you

Highlighted

@Dave_Crook 

you need to fill in the attributes on the object: displayname and mail

 

Furthermore: I have another question as well.

By default only internal (authenticated) senders are allowed to send e-mails to the distribution group. however, when you set it up like this, using on prem AD with Azure AD connect, external senders as allowed to send e-mail as well.

After some Googling I found that there is an attribute you can set as well: msExchRequireAuthToSendTo

However, I don't see this attribute.

Any ideas? You can't change this in O365 since it's a an on prem AD synced group.