Solved

Make Users within an AD container not visible in the GAL

Posted on 2014-02-18
3
336 Views
Last Modified: 2014-02-21
We have a "PendingDeletion" container within Active Directory.  We put User accounts here for 90 days after the user leaves the company in case they return or the account is needed.  After 90 days we delete the account.  During this time Id like to make it so that anyone added to the PendingDeletion folder in AD is not visible in the GAL.
0
Comment
Question by:Twhite0909
3 Comments
 
LVL 22

Expert Comment

by:Nick Rhode
ID: 39867384
On that users mailbox you would choose the option on the General Tab in the Properties to "hide from exchange address list"  prior to disabling or moving the user account.  By default the GAL updates at 4:00am every morning.

General tab, select the Hide From Exchange Address
0
 

Author Comment

by:Twhite0909
ID: 39867399
I have seen the option for individual mailboxes to do this yes.  What I was hoping for was a way that when I move a handful of users to a Container that the Container has the rule to hide everyone under it from the GAl.. This is instead of manually checking the option for each user.
0
 
LVL 19

Accepted Solution

by:
Peter Hutchison earned 500 total points
ID: 39867451
I would create a powershell script, that say, is scheduled to run once a day, picks up all the mailboxes in that container and change the Hidden settings to true.
e.g.
Get-Mailbox -OrganizationalUnit "ou=ArchiveUsers,ou=Mycompany,ou=Com" | Set-Mailbox -HiddenFromAddressListsEnabled $true
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This script can help you clean up your user profile database by comparing profiles to Active Directory users in a particular OU, and removing the profiles that don't match.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now