Solved

After Recent AD Sync to Azure, Cannot Manage Exchange Online Accounts

Posted on 2016-07-22
2
256 Views
Last Modified: 2016-07-25
We just recently sync'ed our AD domain with Exchange Online. Our Exchange had been migrated over a year ago and we have no on-premise Exchange any longer. In the portal, I tried to set a primary SMTP address, and received this error:

The operation on mailbox "John Smith" failed because it's out of the current user's write scope. The action 'Set-Mailbox', 'EmailAddresses', can't be performed on the object 'John Smith' because the object is being synchronized from your on-premises organization. This action should be performed on the object in your on-premises organization.

Our DC's Windows Powershell doesn't support that command. I'd have been surprised if it did.

This is probably relevant- we performed the Sync by changing UPN's on user accounts. The sync works like a charm. But we need to be able to manage accounts.
0
Comment
Question by:jconklin-ansinc-net
2 Comments
 
LVL 39

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
ID: 41725570
That's the whole idea of the sync - you transfer the source of authority to you on-prem AD and any changes in objects and their attributes should be done on-prem. That's also the reason why the only supported configuration is by having an Exchange server on-prem. If you dont have such server, you can still edit the attributes via ADUC/ADSI Edit/PowerShell, however you will be in unsupported scenario.

If you're only concerned about the primary SMTP address, there's a workaround. You can use the following cmdlet to change it directly in the cloud:

Set-Mailbox user@domain.com -WindowsEmailAddress new@domain.com

Open in new window


This cmdlet will add new@domain.com as the primary SMTP, while preserving user@domain.com as a secondary alias. It will work regardless of the object's sync status.
0
 

Author Closing Comment

by:jconklin-ansinc-net
ID: 41727583
The Powershell command worked. Thanks!
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Cloud-based technologies and services will continue to grow in popularity in 2017 thanks to the simple, scalable and cost-effective solutions they deliver. Here are three areas where cloud adoption is poised to really take off.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now