[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 961
  • Last Modified:

Exchange - Mail Enabled Group with Non-Mail Enabled User Accounts Appear in GAL

Hello Experts,
I'm sure the answer to this question is all around ~ I just cant find the right way to search for it correctly. Here's what I got:

Background:
We use a mail-enabled security group in active directory to e-mail the group AND for access to a file share. This group has a few user accounts which are not mail enabled, but they still need access to the file shares.

Problem:
In Outlook, when an email is sent to the group, NDR's are sent back because some of the accounts are without mailboxes.

Why? These non-mail-enabled accounts don't appear in the GAL by themselves, so I'm curious why they still appear in the GAL under the group? I peeked around ADSI, but couldnt see a specific setting for this. ShowInAddressBook is clear.

Thanks for your help!
0
ottobock
Asked:
ottobock
  • 3
  • 2
1 Solution
 
AmitIT ArchitectCommented:
Can you post the screeshot, what you are seeing GAL
Also read this
http://blog.imanami.com/blog/bid/62565/Distribution-group-or-mail-enabled-security-group
0
 
ottobockAuthor Commented:
I dont really want to post a screenshot and it will include user information, but here's another attempt:

Security Group (mail-enabled): Office_Group
Generic User Account without a mailbox added.

When I open Outlook > GAL > I can't find user with no Mailbox. (as should be)

But in the GAL, I find Office_Group, and if I send an email to that group, I get a bounceback for the user without a mailbox.

Make sense? Again, the group is for e-mail AND for access to local file shares. That is why there are a couple users with no mailbox, but still need access to the share.

But one would figure the users without mailboxes (without exchange attributes) would not appear in the GAL in anyway...
0
 
AmitIT ArchitectCommented:
A) If user doesn't have mailbox and is part of security group, email bounce back is normal.
B) User with mailbox only will show up in the GAL.
0
 
ottobockAuthor Commented:
OK - but why its it normal? It shouldn't be normal.
Is there a way to prevent the users without mailboxes to appear when I send an email to the group?

Of course, I could make a new distribution group just for the email, and separate the security group from the dirstribution group, but it just sounds dumb that Outlook/Exchange should even be attempting to send email to users without email within the same organization...
0
 
AmitIT ArchitectCommented:
Outlook is sending email to a DL in this case, then Exchange expands the DL and sends the email, Exchange will not check if user have a mailbox or not, that is why security groups are not recommended for emails, better to use Distribution groups.
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now