Good day, Our new user creation process is:1) Copy existing AD user from 2003 domain controller (non-exchange 2007 aware)2) Add mailbox using Exchange 2007I noticed that a user copy is adding exchange attributes to the new accounts (incorrectly of course)! If I complete this on a Exchange 2003 aware domain controller, and deselect 'add mailbox' then things work as normal. I am wondering why a user copy is copying exchange attributes, and what is the best way to get around this? (I know many will suggest template users but our organization is very complex and users are VERY unique)Thanks,Travis

Please note that the following event log entry is logged with the OAL generator process runs due to users setup this way:------------------------------------------------------------------------------------------------------------------------------------------- OALGen will skip user entry 'Test2' in address list '\Global Address List' because the SMTP address '' is invalid. - Default Offline Address List

ADUC extentions have been removed from Exchange 2007. There are several reasons behind this change. One of the reasons is to support split permissions in organizations that have Exchange Administrators and Active Directory administrators as seperate entities. Another key factor in this decision was automation. In Exchange 2007 the model is to be able to script everything from the Exchange Management Shell using simple, easy to understand commands. The exchange team built a great infrastructure for supporting automation which will hopefully lower the cost of administration. However there was a tradeoff becasue that infrastructure does not support working with ADUC extentions. The benefit of this model is that all Exchange Actions can be found in one place. You can perform most of the actions necessary for managing Exchange recipients from that console - creating mailboxes (and user accounts with mailboxes), mail-enabling users, creating other recipient types, setting user attributes, etc. Active Directory Users and Computers should not be used to created Exchange 2007 objects If the Exchange System Manager is installed, Active Directory Users and Computers will allow you create mailboxes on Exchange 2007 servers. However, this action is not supported. Mailboxes created in this way will be treated as “Legacy” (Exchange 2003 or Exchange 2000) mailboxes, even though they are on an Exchange 2007 server. Exchange 2007 has no recipient update service to update user attributes. Users created in Active Directory Users and Computers would not be fully configured unless there was an Exchange Server 2003 server or Exchange 2000 Server server in the organization that had a recipient update service configured to configure the newly created mailbox. if you still want to manage recipients using ADUC in that case you need to opt for third party solution such as below Managing Exchange 2007 Recipients using the Active Directory Users and Computers MMC Snap-in Vinod |CCNA|MCSE 2003 +Messaging|MCTS|ITIL V3|

Hi Vinod, thank you for the reply. Knowing that Exchange 2007 does not have ADUC extensions, I am wondering why copying a user account (that is mailbox enabled) would copy ANY Exchange 2007 information to the new account? Right now it copies SOME of the items. I guess my question is this, to create a new mailbox-enabled user copied from an existing mailbox-enabled user, what would be the correct process? Right now I can do this, but it seems odd to me!1) Copy the user account using ADUC2) Remove exchange attributes from ADUC3) Create new mailbox from EMC for the newly created userIt just seems odd that I have to complete step 2. What I THOUGHT I would be able to get away with was:1) Copy the user account using ADUC2) Create a new mailbox from EMC for the new user-TravisEDIT: Please note that I can do this using method 2, and it seems to work fine. Would this be a supported way to create a new mailbox-user copied from an existing mailbox-user in active directory? I would use EMC for all of my mailbox tasks, but creating a new mailbox from there does not allow you to copy the group memberships, office information etc. from one user to a new one.

It just seems odd that I have to complete step 2. What I THOUGHT I would be able to get away with was: 1) Copy the user account using ADUC 2) Create a new mailbox from EMC for the new user Yes you can do that. create Account in ADUC and then create mailbox using EMC and select existing user select the account which you created using ADUC. it retains the membership and other properties. REST ALL EXCHANGE TASKS (Attributes update modify etc) DO IT USING EMC. Vinod |CCNA|MCSE 2003 +Messaging|MCTS|ITIL V3|

Thanks for the information! -Travis