Solved

Segregate users on exchange server and setup separate global address lists.

Posted on 2014-07-22
16
74 Views
Last Modified: 2015-07-06
I have a server that I have 2 domains using, I want to segregate the users which I've done fine from a mailflow persepctive, the only thing I'm not able to do is setup separate global address's so they can't see each other.

I'd also like to setup authentication through the email rather than the domain\username too how do I do this?
0
Comment
Question by:dannyfccs
  • 8
  • 6
  • 2
16 Comments
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 40212044
Hi. What version of Exchange are you on?

If you have Exchange 2013/2010 you can just do Address Book Policies to segment the GAL, OAB and more.
http://technet.microsoft.com/en-us/library/hh529948(v=exchg.150).aspx

2010 reference.
http://www.jaapwesselius.com/2011/10/27/new-in-exchange-2010-sp2-address-book-policies/
0
 

Author Comment

by:dannyfccs
ID: 40212074
2013
0
 
LVL 31

Accepted Solution

by:
Gareth Gudger earned 500 total points
ID: 40212087
Cool. Check the first link out. That should walk you through the process of segregation.

Or for more direct links.
http://technet.microsoft.com/en-us/library/hh529931(v=exchg.150).aspx
http://technet.microsoft.com/en-us/library/hh529942(v=exchg.150).aspx
http://technet.microsoft.com/en-us/library/hh529941(v=exchg.150).aspx

In summary. Make a new GAL, assign it to an Address Book Policy. Assign that policy to your users. You will need two of each.
0
Does Powershell have you tied up in knots?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:dannyfccs
ID: 40212134
Can you give me an example of a shell command to create an address book policy? I keep getting errors when I do it?
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 40212177
Hmm. That should work. Although they are just giving you examples of Address Lists in that link. Can you post a screenshot of the error?

Did you already create new Address Lists for the second domain? And a new second GAL? If you did, those are the names you need to specify in the New-AddressBookPolicy.
0
 

Author Comment

by:dannyfccs
ID: 40212927
oab.jpg
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 40212935
Can you type Get-AddressList in EMS and post the results here.

Command Reference:
http://technet.microsoft.com/en-us/library/aa996782(v=exchg.150).aspx
0
 

Author Comment

by:dannyfccs
ID: 40212949
oab1.jpg
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 40213261
Looks like you only have the default out-of-the-box Address Lists that ship with Exchange 2013.

You will need to create new Address Lists and a new GAL for your second domain/company.

Create an Address List in 2013.
http://technet.microsoft.com/en-us/library/bb125036(v=exchg.150).aspx

Create a Global Address List in 2013.
http://technet.microsoft.com/en-us/library/bb232063(v=exchg.150).aspx
0
 

Author Comment

by:dannyfccs
ID: 40213565
Ok, I've now created a separate company, what next?
0
 

Author Comment

by:dannyfccs
ID: 40213574
I just want to assign the users to the new gal
0
 
LVL 18

Expert Comment

by:suriyaehnop
ID: 40213583
You can use either EAC or PowerShell.

Navigate to Recipients > Mailboxes.
In the list view, select the user that you want to assign the policy to, and then click Edit Edit Icon.
Click Mailbox features.
In the Address book policy list, select the ABP that you want to apply to this user.
Click Save.

Set-Mailbox -Identity joe@fabrikam.com -AddressBookPolicy "All Fabrikam"

http://technet.microsoft.com/en-us/library/hh529942(v=exchg.150).aspx
0
 

Author Comment

by:dannyfccs
ID: 40213592
I've done that, however when I open up outlook and select contacts the global address book shows every user on my server which I dont want.
0
 
LVL 18

Expert Comment

by:suriyaehnop
ID: 40213867
You run Update-OffineAddressBook <offlineaddress name>

Close outlook. Delete exiting .OAB file. Launch the outlook again to re-create a new OAB file
0
 
LVL 31

Expert Comment

by:Gareth Gudger
ID: 40213912
You need to create a dedicated Offline Address Book as well with New-OfflineAddressBook cmdlet. You specify the Address Lists it will contain.

Reference:
http://technet.microsoft.com/en-us/library/bb123692(v=exchg.150).aspx

Then make sure you specify that OAB in your Address Book Policy.
http://technet.microsoft.com/en-us/library/hh529931(v=exchg.150).aspx
0
 

Author Comment

by:dannyfccs
ID: 40214727
Did you get my comment regarding hiring you?
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Enabling exchange 2013 read receipt 7 24
Exchange and Domain Controller 3 32
Exchange Server 2016 Installation 2 17
Exchange database won't mount 4 25
Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question