User Profile
CloudHal
Iron Contributor
Joined 7 years ago
User Widgets
Recent Discussions
Re: How to use multiple filter operations in beta Graph API?
Jeff Walzer if you filter on signInActivity you cannot use any other filters, this is documented here https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-manage-inactive-user-accounts It's an extremely annoying limitation.1.5KViews0likes0CommentsRe: Delete device without locking
PSUster surely either you allow them to access your resources e.g. Exchange online or Office, in which case it's OK if they are registered, or you don't allow them access, in which case it is OK if they get blocked when you delete them? Or do you want to remove the registration whilst continuing to allow them access?1.8KViews0likes4CommentsRe: Bulk Update User Info in Azure Active Directory
KNDheeraj if you don't really know what you are doing then this is somewhat dangerous. Running someone else's script without understanding it could cause you some serious issues that you cannot fix. Also, even if this works do you understand the implications? The users must be aware and will need to sign in to applications using the new UPN. They may need to log out of some applications and back in again, and may need to tell the apps to forget the old ones. I assume you have a global admin account? That being said this is how you can do it. On Windows, search for 'powershell ISE'. Don't left click on the search result, but right click and choose 'run as administrator'. When it opens, there should be 2 halves, a white one and a blue one. If not find the button at the top that says 'show script pane' and click in those until you have white at the top and blue at the bottom. Then paste this into the white area: Install-Module MSOnline Hit the play button in the toolbar. This should install after a while, click Yes to all to any warnings. Now, paste that guys script into the white area (replacing the bit above), modify the domains to suit and hit play again. Finally, check that everyone's UPN has changed by typing get-msoluser in the bottom and then return.2KViews0likes0CommentsRe: Migrating on prem disribution group to exchange online - Hybrid
What you are suggesting is possible but unsupported. You can manage email attributes using AD users and computers, but it is not so easy for support, and user accounts won’t have all the correct email attributes. For example managing proxy addresses is prone to error. The only way of retaining AD at the moment is to also retain exchange for management.2.9KViews1like2CommentsIssue with security defaults - activesync clients get quarantined
We are seeing issues after enabling Security Defaults where activesync clients get quarantined in Exchange Online and cannot be approved. O365 Support have been unable to tell us why or fix it. Has anyone seen this or know how to resolve? Problem clients are all iOS using the native mail app. In EXO PS using get-mobiledevice I can see: DeviceAccessState : Quarantined DeviceAccessStateReason : AadBlockDueToAccessPolicy We have no activesync policy to quarantine devices. Some work fine, some get blocked.8.1KViews1like5CommentsRe: Migrating on prem disribution group to exchange online - Hybrid
SASK2381 Hi, since you have on-prem AD and are syncing using AD connect, you actually don't migrate your DLs. AD is the source of user data including users and groups, so you continue to manage them using AD users and computers, and Exchange admin center (on-prem). That includes mailbox management, creating mailboxes, manage DL membership etc.2.9KViews1like4CommentsRe: Impact of changing our primary domain
AMcCain I've done this before, in my experience the only impact is: - Office apps - sign out and sign back in again to see the new UPN or if there are activation issues - Onenote - since the path changes, notebooks become disconnected. If possible get the users to close the notebooks before the change, then open after. Otherwise you can end up with changes that have not synced which can get messy.36KViews0likes0CommentsRe: Hybrid - Mail Users Missing in O365
jweier_elys if you have Hybrid configured correctly, it should work as follows: - You use Exchange on prem for all mailbox management, on-prem and online, including mailbox creation, modifying proxy addresses etc. - You will see on-prem and online mailboxes in Exchange on-prem. The online ones will show as Office 365 mailboxes. - You will online see online ones in Exhange online. - The address list is synced, so users will be able to see everyone in the address book, if they are migrated or not. - If configured correctly, it doesn't matter if you license users for Exchange online before they are migrated. This is because it knows if the users have a mailbox on prem or not through AD attribute sync. For this to work, you MUST have configured Exchange hybrid in Azure AD Connect. If you have not done that and add a license, you end up with 2 mailboxes, one on prem and one online, and a right mess. If you migrate a mailbox and you don't see it on-prem any more, you have an issue, and I suspect you have not configured hybrid mode correctly, or enable Exchange hybid in AD connect.18KViews0likes1CommentRe: Office 365 Domain name change/add
rupandalmeida 1. Verify domain in O365 and complete DNS setup 2. Add new domain as additional UPN suffix in on-prem AD 3. Change some test users UPNs to new UPN 4. Change email addresses to match (test a few users first) 5. Change email address policy in Exchange on-prem (assuming you have one, which you should) and update everyones UPN 6. Tell everyone to use new email/UPN from now on.1.8KViews1like3Comments
Recent Blog Articles
No content to show