skbarnard
asked on
Creating custom attribute using ExtensionAttribute Exchange 2010
As always, I'm coming to my wonderful source for solutions to my question.
I work for a school district and we're becoming a Google district. The email address needs to be "username@domain.us" and our main email address is longer (username@domain.k12.ca.us
I thought I had changed the AD mail attribute to the shorter "domain.us" but something (probably an Exchange server reboot) changed it back. This has caused an issue with the synchronization of our AD accounts with Google drive.
I'm pretty sure I can use any of the ExtensionAttribute1-15 attributes to create a custom attribute without having to extend the schema.
What I need is assistance with the powershell command or script that will allow me to first name the attribute and then use a .CSV file to populate the email address for each staff and student account.
Please point me in the right direction. I'm still somewhat new to powershell and am not a programmer but I can handle up to moderately complex commands and scripts.
Thanks for any input.
I work for a school district and we're becoming a Google district. The email address needs to be "username@domain.us" and our main email address is longer (username@domain.k12.ca.us
I thought I had changed the AD mail attribute to the shorter "domain.us" but something (probably an Exchange server reboot) changed it back. This has caused an issue with the synchronization of our AD accounts with Google drive.
I'm pretty sure I can use any of the ExtensionAttribute1-15 attributes to create a custom attribute without having to extend the schema.
What I need is assistance with the powershell command or script that will allow me to first name the attribute and then use a .CSV file to populate the email address for each staff and student account.
Please point me in the right direction. I'm still somewhat new to powershell and am not a programmer but I can handle up to moderately complex commands and scripts.
Thanks for any input.
ASKER
Both domains are authoritative, the k12.ca.us is the default. I'm hesitant to change the default to the .us domain because I don't know what will happen with the email flow.
We have 1 email policy but it's not applied (not enabled)
If we weren't going Google, it wouldn't matter which email address is used but we've told Google that the .us email is what we want to use so it can now only be the .us email.
We'll very likely be switching our staff email to gmail in a couple of months but until we make that transition, I need the account synchronization to function in our current environment. Google suggested creating a new attribute to put the email address in so that if the mail attribute changes back to the k12.ca.us address, synchronization will sitll work because Google won't be looking at the mail attribute.
We have 1 email policy but it's not applied (not enabled)
If we weren't going Google, it wouldn't matter which email address is used but we've told Google that the .us email is what we want to use so it can now only be the .us email.
We'll very likely be switching our staff email to gmail in a couple of months but until we make that transition, I need the account synchronization to function in our current environment. Google suggested creating a new attribute to put the email address in so that if the mail attribute changes back to the k12.ca.us address, synchronization will sitll work because Google won't be looking at the mail attribute.
Changing the default domain won't fix your issue. My suggestion would be to use an email address policy to apply the correct default email address to each account. If you want to use a custom attribute, you can do that but you can't rename the attribute. You can only set a value.
-JJ
-JJ
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you for the warnng jjmck. We have succeeded with using the UPN; we haven't heard of anything going awry (yet) but I'll be monitoring to make sure we don't.
ASKER
This is the solution that worked in my particular case. All the comments were very helpful
1. Do you mean .us is default authoritative domain? I suppose both should be authoritative domains and one is default.
2. WHat e-mail address policies do you have? Maybe you have only one and this has changed all the users back to the old e-mail address.
3. Do you want both e-mail addresses to be set for the users?
I can provide you the script, but solve your issue with the above suggestions.