Create a Dynamic distribution group with excluding an OU

Posted on 2014-12-01
Medium Priority
Last Modified: 2014-12-02

I am looking to set up a New Dynamic distribution group but I would like to exclude a entire OU.  is there an easy way of setting this up with out using Custom attributes?

Please let me know
Question by:SEHC
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
LVL 71

Accepted Solution

Chris Dent earned 1000 total points
ID: 40475367
Nope. None of the filter options will allow you to filter against OU because it's not an attribute of the user. All attributes which do hold that (such as distinguishedName and canonicalName) do not allow wild card filtering (meaning you can't target the parent OU of a user).

LVL 37

Assisted Solution

by:Jian An Lim
Jian An Lim earned 1000 total points
ID: 40475469
the only way to get it is to insert a custom attribute to the user based

For example Get-Mailbox -OrganizationalUnit "OU=BLOCK,DC=ABC,DC=Lock" | Set-Mailbox -CustomAttribute1 "BlockDDL"

Then you create the DDL filter to exclude CustomAttribute1  -notlike (-ne) "BlockDDL"  (it can be any CustomAttribute )

This is not ideal but kind of achieve what you want

Author Comment

ID: 40475825

can I set it up and just skip a OU entirely?  or this can not be done as well because I would like to not have to manage this on a daily bases
LVL 71

Expert Comment

by:Chris Dent
ID: 40475834
No because there is nothing that will let you filter out an OU, no attribute holds a user (or other AD objects) parent OU.

Your only choice is to populate some other attribute with something you can filter on and maintain that.


Author Comment

ID: 40476457

how would I set the New-DynamicDistributionGroup to not equals to ??? can you send me the syntax

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data…
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question