I have two gals.
One simply has our support email address in it and nothing else, the other has all users who are hosted on the exchange server.
What I want to do is set it up, so if a new user is coming online I can add them to a security group calls "new exchange user" this would allow them to see the gal with all the users.
Once they are setup they are removed from the group and they can now only see the gal with our support address in it.
This works very well until you start using rpc+http and OWA
OWA always shows the Gal with everyone in it.
From what I can see owa uses an ldap query to look up the GAL. So maybe I can apply security there? I'm not sure.