Segregate users on exchange server and setup separate global address lists.

I have a server that I have 2 domains using, I want to segregate the users which I've done fine from a mailflow persepctive, the only thing I'm not able to do is setup separate global address's so they can't see each other.

I'd also like to setup authentication through the email rather than the domain\username too how do I do this?
Daniel ForresterDirectorAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Gareth GudgerCommented:
Hi. What version of Exchange are you on?

If you have Exchange 2013/2010 you can just do Address Book Policies to segment the GAL, OAB and more.
http://technet.microsoft.com/en-us/library/hh529948(v=exchg.150).aspx

2010 reference.
http://www.jaapwesselius.com/2011/10/27/new-in-exchange-2010-sp2-address-book-policies/
0
Daniel ForresterDirectorAuthor Commented:
2013
0
Gareth GudgerCommented:
Cool. Check the first link out. That should walk you through the process of segregation.

Or for more direct links.
http://technet.microsoft.com/en-us/library/hh529931(v=exchg.150).aspx
http://technet.microsoft.com/en-us/library/hh529942(v=exchg.150).aspx
http://technet.microsoft.com/en-us/library/hh529941(v=exchg.150).aspx

In summary. Make a new GAL, assign it to an Address Book Policy. Assign that policy to your users. You will need two of each.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Daniel ForresterDirectorAuthor Commented:
Can you give me an example of a shell command to create an address book policy? I keep getting errors when I do it?
0
Gareth GudgerCommented:
Hmm. That should work. Although they are just giving you examples of Address Lists in that link. Can you post a screenshot of the error?

Did you already create new Address Lists for the second domain? And a new second GAL? If you did, those are the names you need to specify in the New-AddressBookPolicy.
0
Daniel ForresterDirectorAuthor Commented:
oab.jpg
0
Gareth GudgerCommented:
Can you type Get-AddressList in EMS and post the results here.

Command Reference:
http://technet.microsoft.com/en-us/library/aa996782(v=exchg.150).aspx
0
Daniel ForresterDirectorAuthor Commented:
oab1.jpg
0
Gareth GudgerCommented:
Looks like you only have the default out-of-the-box Address Lists that ship with Exchange 2013.

You will need to create new Address Lists and a new GAL for your second domain/company.

Create an Address List in 2013.
http://technet.microsoft.com/en-us/library/bb125036(v=exchg.150).aspx

Create a Global Address List in 2013.
http://technet.microsoft.com/en-us/library/bb232063(v=exchg.150).aspx
0
Daniel ForresterDirectorAuthor Commented:
Ok, I've now created a separate company, what next?
0
Daniel ForresterDirectorAuthor Commented:
I just want to assign the users to the new gal
0
suriyaehnopCommented:
You can use either EAC or PowerShell.

Navigate to Recipients > Mailboxes.
In the list view, select the user that you want to assign the policy to, and then click Edit Edit Icon.
Click Mailbox features.
In the Address book policy list, select the ABP that you want to apply to this user.
Click Save.

Set-Mailbox -Identity joe@fabrikam.com -AddressBookPolicy "All Fabrikam"

http://technet.microsoft.com/en-us/library/hh529942(v=exchg.150).aspx
0
Daniel ForresterDirectorAuthor Commented:
I've done that, however when I open up outlook and select contacts the global address book shows every user on my server which I dont want.
0
suriyaehnopCommented:
You run Update-OffineAddressBook <offlineaddress name>

Close outlook. Delete exiting .OAB file. Launch the outlook again to re-create a new OAB file
0
Gareth GudgerCommented:
You need to create a dedicated Offline Address Book as well with New-OfflineAddressBook cmdlet. You specify the Address Lists it will contain.

Reference:
http://technet.microsoft.com/en-us/library/bb123692(v=exchg.150).aspx

Then make sure you specify that OAB in your Address Book Policy.
http://technet.microsoft.com/en-us/library/hh529931(v=exchg.150).aspx
0
Daniel ForresterDirectorAuthor Commented:
Did you get my comment regarding hiring you?
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Exchange

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.