Migrate from Cloud identities to Azure AD Connect.

Hi, Customer has working tenant with data inside and you need to convert it from Cloud-Only to Synced. It can be done with the following choices: UPN-matcing https://support.microsoft.com/en-us/help/3164442/how-to-use-upn-matching-for-identity-synchronization-in-office-365,-azure,-or-intune SMTP-matching http://www.ivchenko.pro/Blog/Post/23/Merging-on-premises-and-Office-365-users HARD-matching https://dirteam.com/dave/2014/08/15/fixing-office-365-dirsync-account-matching-issues/ Or by using little bit more effort and exporting user attributes from Office 365 to csv-file. https://365lab.net/2014/04/18/office-365-migrate-from-cloud-identities-to-dirsync/ Johan,…continue reading →

Add Calendar permissions to mailboxes in Hybrid environments.

Hi again, Below script will add Reviewer permissons for DefaultCalendarShare group. This is needed for Hybrid environments and Cross-Premises calendar sharing. $allmailbox = Get-Mailbox -Resultsize Unlimited | where { $_.IsShared -eq $False -and $_.ArbitrationMailbox -eq $Null } $Logfile = "C:TempLogsadd-calendarPerm.log" Foreach ($Mailbox in $allmailbox) { $cal = (Get-MailboxFolderStatistics $Mailbox |…continue reading →

Assign Permissions to all mailboxes using Mail Enabled Security Group.

Hi, Add all users that need the following rights to a Mail Enabled Security Group. Then add permissions to calendars with this script: $allmailbox = Get-Mailbox -Resultsize Unlimited -Filter {RecipientTypeDetails -eq 'usermailbox'} Foreach ($Mailbox in $allmailbox) {     $path = $Mailbox.alias + ":" + (Get-MailboxFolderStatistics $Mailbox.alias | Where-Object { $_.Foldertype…continue reading →

Get all user lisences from Office 365 to csv.

Hi, Today I had to get a list from Office 365 with UserPrincipalName and MsolAccountSku. So here is the trick-script. $ReportPath = "c:userlist.csv" Add-Content -value ("UserPrincipalName"+","+"IsLicensed"+","+ "Licenses”) -Path $ReportPath $AllUsers = Get-MsolUser -All foreach ($User in $AllUsers) {  $UserPrincipalName = $User.UserPrincipalName  $IsLicensed = $User.IsLicensed  $Licenses = $User.Licenses.AccountSkuId  Add-Content -value ($UserPrincipalName+","+$IsLicensed+","+$Licenses)…continue reading →

Add all licensed users to a Mail Enabled Security Group and then assign permissions to RecipientType.

Yesterday I had to add all licensed users to a Mail Enabled Security Group and then add that group to Room, Equipment and user mailboxes with desired permissions. To add all Licensed users to a group: $users = Get-MsolUser | Where-Object { $_.isLicensed -eq "TRUE" } $users | foreach {Add-DistributionGroupMember…continue reading →

Force Full Password Sync with AAD Connect.

I think this was easier with Dirsync, but that product is history. Open Powershell as Administrator and modify this Powershell script: $Local = "Domain.local" $Remote = "tenant.onmicrosoft.com - AAD" #Import Azure Directory Sync Module to Powershell Import-Module AdSync $OnPremConnector = Get-ADSyncConnector -Name $Local Write-Output "On Prem Connector information received" $Object…continue reading →