jb747
asked on
Using ADModify to change delivery restrictions in Microsoft Exchange
I am using ADModify to bulk change mailbox delivery restrictions across one of the information stores. I have created a security group containing the members of the individuals allowed to send to these mailboxes.
On a test account, the security group was applied using the GUI and tested successfully
Now to bulk modify
In ADModify, I have applied the LDAP fillter associated with the specific information store and selected all (240 accounts). Custom tab - authOrig and applied the distinguished name of the secutiy group.
The problem is that although the changes are 100% successful, no one can send mail to these accounts. Not even members of the applied security group. The group was removed using the null value and everything is back to the default value and working properly. I have also attempted to do this on a reduced number of accounts (20) and had the same results
On a test account, the security group was applied using the GUI and tested successfully
Now to bulk modify
In ADModify, I have applied the LDAP fillter associated with the specific information store and selected all (240 accounts). Custom tab - authOrig and applied the distinguished name of the secutiy group.
The problem is that although the changes are 100% successful, no one can send mail to these accounts. Not even members of the applied security group. The group was removed using the null value and everything is back to the default value and working properly. I have also attempted to do this on a reduced number of accounts (20) and had the same results
ASKER
I've included snapshots of the results. Using dLSubmitPerms returns 0% success. In review of the variable, I don't see it when I look in Adsiedit.msc. Am I doing something wrong ? Still need to use the custom field correct ?
dlsp.jpg
dlspresults.jpg
dlsp.jpg
dlspresults.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
That's it...everything worked as expected. Thank you.
Hey,
authOrig can only contain Users (or really mailboxes). If you're adding a group you must add it to dLSubmitPerms.
It makes for a very odd split.
Chris