I am preparing to create my Address Book Policy, but an running into some trouble. I already have an AL, OAB, and GAL for my customer. I used this command to create an empty RAL (they have no rooms to book):

New-DistributionGroup -Name "RoomList_Empty" -OrganizationalUnit "domain.local/OU/CustomerOU" -RoomList

Then I ran the following command to create the ABP:

New-AddressBookPolicy -Name 'ABP1' -AddressLists '\Customer AL' -RoomList '\RoomList_Empty' -OfflineAddressBook '\Customer OAL' -GlobalAddressList '\Customer GAL' 

I am getting the error:

All room list "\RoomList_Empty" was not found. Please make sure you typed the identity correctly.
    + CategoryInfo          : NotSpecified: (:) [New-AddressBookPolicy], ManagementObjectNotFoundException
    + FullyQualifiedErrorId : [Server=ex01,RequestId=345f8ffa-8353-42f6-a79a-63b3cc266519,TimeStamp=4/28/201
   5 9:33:04 PM] [FailureCategory=Cmdlet-ManagementObjectNotFoundException] 2D8FB30C,Microsoft.Exchange.Management.Sy
  stemConfigurationTasks.NewAddressBookPolicy
    + PSComputerName        : ex01.domain.local

What am I missing here? Thanks

You are providing it with a 'room list' object, not an 'address list' one. Use the New-AddressList cmdlet instead:

New-AddressList -Name "Building 34 Meeting Rooms" -Container "\All Rooms" -IncludedRecipients Resources -ConditionalCustomAttribute1 "Building 34"

When I run the command:

New-AddressList -Name "TestEmptyRoomList" -Container "\All Rooms" -IncludedRecipients Resources -ConditionalCustomAttribute1 "mike"

I get the error:

Active Directory operation failed on dc01.domain.local. This error is not retriable. Additional
information: Access is denied.
Active directory response: 00000005: SecErr: DSID-03151E07, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
    + CategoryInfo          : NotSpecified: (:) [New-AddressList], ADOperationException
    + FullyQualifiedErrorId : [Server=ex01,RequestId=d941990e-59d4-4181-9f3a-c20a6ff9c711,TimeStamp=4/30/201
   5 9:08:54 PM] [FailureCategory=Cmdlet-ADOperationException] CFDA90F5,Microsoft.Exchange.Management.SystemConfigura
  tionTasks.NewAddressList
    + PSComputerName        : ex01.domain.local

I'm using my Org Admin account and tried with a regular and elevated shell. My Org Admin account is also a domain admin.

• Edited by mhashemi 9 hours 40 minutes ago

When I run the command:

New-AddressList -Name "TestEmptyRoomList" -Container "\All Rooms" -IncludedRecipients Resources -ConditionalCustomAttribute1 "mike"

I get the error:

Active Directory operation failed on dc01.domain.local. This error is not retriable. Additional
information: Access is denied.
Active directory response: 00000005: SecErr: DSID-03151E07, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
    + CategoryInfo          : NotSpecified: (:) [New-AddressList], ADOperationException
    + FullyQualifiedErrorId : [Server=ex01,RequestId=d941990e-59d4-4181-9f3a-c20a6ff9c711,TimeStamp=4/30/201
   5 9:08:54 PM] [FailureCategory=Cmdlet-ADOperationException] CFDA90F5,Microsoft.Exchange.Management.SystemConfigura
  tionTasks.NewAddressList
    + PSComputerName        : ex01.domain.local

I'm using my Org Admin account and tried with a regular and elevated shell. My Org Admin account is also a domain admin.

• Edited by mhashemi Thursday, April 30, 2015 9:45 PM

Hi,

As mentioned above, please double check the permission setting for All Address Lists container, also All Rooms container:
1. "Include inheritable permissions from this object's parent" should be checked
2. "Exchange Trusted Subsystem" should be added

If you create room list in this command, please run below command to new address book policy:
New-AddressBookPolicy -Name 'ABP1' -AddressLists '\Customer AL' -RoomList 'All Rooms\RoomList_Empty' -OfflineAddressBook '\Customer OAL' -GlobalAddressList '\Customer GAL'

I can see that inheritance is set on the CN=All Rooms,CN=All Address Lists,CN=Address Lists Container,CN=org,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=domain,DC=local object. The Exchange Trusted Subsystem object is does not have an ACE on that object, so I will write up a change to give that a try.

After identifying the container without Exchange Trusted Subsystem, I added the ACE (full control) and tried the New-AddressList and New-AddressBookPolicy cmdlets. They worked.

Thanks.

• Marked as answer by Allen_WangJFMicrosoft contingent staff, Moderator 4 hours 31 minutes ago