• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 232
  • Last Modified:

disable ad and exchange attributes

Hello Experts

I need some help from your valuable experience and knowledge to write a power shell script to perform following tasks:

Disables the user account in AD
 - Disables OWA/OMA access
 - Queries and blocks connections from any mobile device associated to the user
 - Disables activesync access
 - resets the user password

Our exchange environment is Exchange 2010/2013, AD is a combination of Windows 2008 R2 and 2012 R2 dcs and servers

Looking forward hearing from you
0
Jerry Seinfield
Asked:
Jerry Seinfield
1 Solution
 
Justin YeungSenior Systems EngineerCommented:
Reset password

Set-ADAccountPassword -Identity TheSamAccountName -Reset

Disable OWA

Set-CasMailbox -identity TheSamAccountName -OWAEnabled $False

Disable OMA

Set-CasMailbox -identity TheSamAccountName -ActiveSyncEnabled $False

Disable AD account

Disabled-ADaccount -identity TheSamAccountName

Obtain OWA/ActiveStatus

Get-CasMailbox -identity TheSamAccountName
0
 
Jon BrelieSystem ArchitectCommented:
I wrote a script that will do this based on user input.  You can grab a copy here:

http://www.experts-exchange.com/Software/Server_Software/Active_Directory/Q_28415019.html

It will block remote devices associated to the user account from connecting to the environment so make sure you do remote device wipes first if you intend to do that.

edit: Attached the file.  Just rename to .ps1 to run it.
superDisable.txt
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now