Hybrid deployment mailbox synchronization question

I hope I have this in the right forum:

So, we have our faculty and staff on-premise and our students getting setup with office365 accounts.  Our students get created in active directory and then Azure Directory Sync syncs that user account to office365.  Then a license is applied to that user to get a mailbox on office365.  However, the user doesn't show up in both the on-premise mailbox list it only shows in the office365 mailboxes.  This means that when you are on the on-premise accounts webmail or outlook you cannot find that office365 user in the GAL.    However, if I run the command Enable-RemoteMailbox -Identity "user" -RemoteRoutingAddress "email" on the on-premise server the user then shows up as an office365 mailbox and then works in the GAL.  But, I cannot justify running this command on every single student account that gets created on office365 so there must be a better way.... Can anyone point me in the direction of what I may be doing wrong in my hybrid setup?   

July 13th, 2015 10:41am

Sorry, but that's what you have to do.  You didn't share the procedure you use to provision new student accounts, but you could use New-RemoteMailbox, which creates the user account as well as the remote mailbox, or you could add Enable-RemoteMailbox to the provisioning process.

Free Windows Admin Tool Kit Click here and download it now
July 13th, 2015 2:19pm

Hmm, we use a product called jenzebar for our online student portal where they are entering information which then creates the active directory account.  This was customized by a web team here in town so maybe I need to reach out to them.  I did find this in the web config file where this happens.  I edited out some info that pertains to our domain...  Still don't see where we could really add this here?

<!--Email Settings Start-->
    <!--Required Keys: [Username][ResetPassword]-->
    <add key="ResetPwdEmailSubject" value="Your domain Account Password."/>
    <add key="ResetPwdEmailBody" value="Please return to &lt;a href=http://domain.net&gt;http://domain.net&lt;/a&gt; and log in using the following password:&lt;br /&gt;&lt;br /&gt;Password: [ResetPassword]&lt;br /&gt;&lt;br /&gt;"/>
    <add key="GeneratePwdLength" value="7"/>
    <add key="EmailResetFailError" value="The email address provided does not match the alternate address listed for your account.  Please try password reset option #1."/>
    <!--Reset Password Email Settings End-->
    <add key="Domain" value="(domain Controller).net"/>
    <add key="ADStudentsPath" value="OU=fall10,OU=fall10,OU=Students,DC=,DC=net"/>
    <add key="ADEmployeesPath" value="OU=Employees,DC=,DC=net"/>
    <add key="ADGroupsPath" value="OU=Groups,DC=domain,DC=net"/>
    <!-- GD 20120606 <add key="ADProfilePath" value="\\student\student\profile\"/>-->
    <add key="ADProfilePath" value="\\fs-01\student\newprofile\"/>
    <!--User to perform functions-->
    <!--<add key="ADUser" value="Custom_User@test.net"/>
    <add key="ADPassword" value="pwd!"/>-->
    <add key="ADUser" value="aduser" />
    <add key="ADPassword" value="#pwd" />
    
    <!--<add key="ExchangeURI" value="https://mail01.domain.net/Powershell?serializationLevel=Full"/>
    <add key="ExchangeDomain" value="domain.net"/>
    <add key="ExchangeOU" value="domain.net/Students/fall10/fall10"/>
    <add key="ExchangeDatabase" value="Students"/>
    <add key="ExchangeUser" value="Custom_User@domain.net"/>
    <add key="ExchangePassword" value="#pwd"/>-->

    <!--Office 365 Settings Start-->
    <add key="365TargetDomain" value="manhattantech.onmicrosoft.com"/>
    <add key="365Domain" value="domain.net"/>
    <add key="365pSMTPproxy" value="domain.edu"/>
    <add key="365ssmtpproxy" value="domain.net"/>
    <add key="s365showInAddressBook1" value="CN=Default Global Address List,CN=All Global Address Lists,CN=Address Lists Container,CN=domain,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=domain,DC=net"/>
    <add key="s365showInAddressBook2" value="CN=All Users,CN=All Address Lists,CN=Address Lists Container,CN=domain,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=domain,DC=net"/>
 
    <!--Office 365 Settings End-->

July 13th, 2015 3:44pm

Creating a remote mailbox is simply applying certain AD attributes.  You're welcome to use ADSI Edit or Attribute Editor to look at the differences when you enable a remote mailbox and reverse-engineer the settings into your provisioning system.  Note that doing this isn't supported, but that doesn't mean you can't make it work.

Free Windows Admin Tool Kit Click here and download it now
July 13th, 2015 4:49pm

Hi Josh,

Thank you for your question.

If you didnt meet the solution which Ed supply, we suggest you post this web configured file to the following link:

https://social.technet.microsoft.com/Forums/exchange/en-us/home?forum=exchangesvrdevelopment

If there are any questions regarding this issue, please be free to let me know.

Best Regard,

Jim

July 14th, 2015 1:59am

Thanks, I will post over there and see what I can come up with.  
Free Windows Admin Tool Kit Click here and download it now
July 14th, 2015 8:55am

Hello, I got off the phone with microsoft support and they said the only way to do it is to manually run the enable-remote mailbox command on every user account that gets created in AD and synced of O365 to get the attributes to add in AD to have them show up in the GAL.  Can anyone help me write a script to automate this?  I'm not sure how to do that since the name and remote routing address changes in the powershell command everytime...
July 16th, 2015 5:08pm

Hi Josh,

If you want to use the script to achieve this, you could also post this case in Exchange development forum:

https://social.technet.microsoft.com/Forums/exchange/en-us/home?forum=exchangesvrdevelopment

If there are any questions regarding this issue, please be free to let me know.

Best Regard,

Jim

Free Windows Admin Tool Kit Click here and download it now
July 16th, 2015 9:14pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics