Tag Archives: PowerShell

How to change the Postmaster address in Exchange 2013

November 8, 2014 jaapwesselius 1 Comment

While testing mail flow I noticed that when an NDR was sent out by my Exchange 2013 the default postmaster account was used, with the default domain, i.e. postmaster@contoso.local (I use a .local TLD on my Active Directory domain) instead of a regular and routable SMTP domain.

To change this you can open the Exchange Admin Center, navigate to Mail Flow | Receive Connectors and click the more options (the three dots) and select Organization Transport Settings as shown in the following figure.

Continue reading How to change the Postmaster address in Exchange 2013 →

Uncategorized

IT/DEV Connections 2014

September 24, 2014 jaapwesselius 1 Comment

Last week the 2014 edition of IT/Dev Connections took place at the Aria Resort in Las Vegas and as an Exchange Server MVP I was focusing on the Exchange track.

Continue reading IT/DEV Connections 2014 →

Office365

Assign Office 365 license via PowerShell

September 4, 2014 jaapwesselius 3 Comments

You can assign a license to a user using the Microsoft Portal, just select the user and in the Action Pane select License. Depending on the licenses you got available you can assign it (in this example an E3 license) and set the user’s location (in this example Netherlands):

Continue reading Assign Office 365 license via PowerShell →

Office365

Force DirSync to synchronize with Office 365

July 28, 2014 jaapwesselius 2 Comments

Sometimes it can be useful to manually force a Directory Synchronization between your on-premises Active Directory and Windows Azure Active Directory. Over the last couple of years Microsoft has released a couple of Directory Synchronization tools, and each version had its own way of manually forcing a Directory Synchronization.

These versions are:

DirSync (the original first version of Directory Synchronization).
Azure AD Sync or AADSync.
Azure AD Connect or AADConnect (the current version)

I’ll explain all three in the following sections below, starting with Azure AD Connect.

Azure AD Connect

The latest (current) version of the directory synchronization tool is Microsoft Azure AD Connect. Please note that this is the only officially supported version by Microsoft!

One remark in comparison with previous version of DirSync tools, the Azure AD Connect now synchronizes once every thirty minutes. If you enabled password synchronization, the official SLA mentions a 2 minute timeframe before the password is synchronized, but in a typical environment it is more like 30 seconds or so.

To force an incremental synchronization, open PowerShell on the Directory Synchronization server (or any other server where you installed Azure AD Sync) and execute the following command:

Start-ADSyncSyncCycle -PolicyType Delta

There’s not much to show here though Glimlach

Azure AD Sync

If you’re running Windows Azure Active Directory Sync Services you have to run a Command Line utility called the DirectorySyncClientCmd tool. You can find this tool in the C:\Program Files\Microsoft Azure AD Sync\Bin directory on the Directory Synchronization server. Run this command from a Command Prompt with elevated privileges and your local Active Directory is synchronized with Office 365 immediately:

This tool is configured as a Scheduled Task to run every three hours. You can also open the Scheduled Tasks in Administrative Tools and manually start the task (instead of starting the tool manually).

DirSync

If you want to do a full synchronization between Active Directory and Office 365 (which is basically Azure Active Directory) you can logon to the DirSync Server, open a PowerShell windows (with elevated privileges), navigate to the C:\Program Files\Windows Azure Active Directory Sync\ directory and type the .\DirSyncConfShell.psc1 command. When done you can start the Start-OnlineCoexistenceSync cmdlet which will force replication.

When you have installed Windows Server 2012 R2 with the latest version of DirSync (I was running 1.0.6862.0 but I’ve seen this with 1.0.7020.0 as well) the DirSyncConfShell.psc1 file is missing.

In Windows 2012 R2 you can import the DirSync module directly in PowerShell using the Import-Module DirSync command. When imported you can run the Start-OnlineCoexistenceSync cmdlet to synchronize your Active Directory with Office 365.

Updated on January 19, 2017.

Exchange

Exchange 2013 SP1 SSL Offloading

February 28, 2014 jaapwesselius 9 Comments

One of the ‘new’ features in Exchange 2013 SP1 is SSL Offloading, although I can better say ‘re-introduced’ features since this was available in Exchange 2010 but not supported in Exchange 2013 RTM.

I’ve explained numerous time why you want to use SSL offloading in Exchange, but mainly because of performance reasons (load balancers typically have a dedicated chip for SSL decryption) and for SSL certificate management. Suppose you have 8 Client Access servers and *not* using SSL Offloading. In this case you have to manage the SSL certificate on each individual Client Access server. If you have an SSL offloading scenario you have only one SSL certificate to manage, and that’s the SSL certificate on the load balancer.

Continue reading Exchange 2013 SP1 SSL Offloading →

Jaap Wesselius