Moving distribution list memberships from contact to user object with sync engine

Similar Messages

• Unable to manage Distribution list membership since moving from Exchange 2003 to Exchange 2010

  Hi,
  We have recently started migrating from Exchange 2003 to Exchange 2010.  One of our customers used to be able to manage a security group through the outlook address book.  This is a mail enabled security group where the customer is on
  the "Managed by" entry and the "Manager can update membership list" is ticked. 
  Now that the users mailbox has been migrated to Exchange 2010, if they try and modify the membership using outlook by finding the group in the address book they get the error "changes to the distribution list membership cannot be saved. you do not have
  sufficient permission to perform this operation on this object".
  I have now added a test account to the managed by entry on the security group to test the problem.
  I have followed the article
  http://blogs.technet.com/b/exchange/archive/2009/11/18/3408844.aspx that explains how to use the EMS to give users the right to amend groups that users own.  I did not run the script but entered the following commands:
  New-ManagementRole -name “MyDistributionGroupsManagement_Test” -parent MyDistributionGroups
  Remove-ManagementRoleEntry “MyDistributionGroupsManagement_Test\New-DistributionGroup” -confirm:$false
  Remove-ManagementRoleEntry “MyDistributionGroupsManagement_Test\Remove-DistributionGroup” -confirm:$false
  New-ManagementRoleAssignment -name “MyDistributionGroupsManagement_Test-Default Role Assignment Pol” -role “MyDistributionGroupsManagement_Test” -policy “Default Role Assignment Policy”
  All appears to have worked ok and I have seen no errors while doing this
  If I use OWA and then use the ECP, I can now see the "Public groups I own" but no groups are listed.
  I have created some new distribution groups in Exchange 2010 (One dist list and one security group) to test and added the test account as an owner of both and a member of both.  I still cannot amend the membership using outlook address book and the
  ECP still shows no groups under "Public Groups I own"
  I have seen a number of articles on how to do this and it looks like I am doing everything right and it has worked for plenty of other people.  I just don't know what's going wrong.
  I would be very grateful if anyone can help. 
  Matt

  Hi Rajith,
  I deleted the outlook profile and recreated it but this did not work.
  I have now created a brand new mailbox on Exchange 2010 added this to the "managed by" section of the Exchange 2010 dist lists and I still get the error.  I also do not see the groups listed when logging in as that user to OWA ECP and clicking on the
  Groups link.
  I had a look at the link you sent me and I could see that from the Exchange server when I opened the User roles to get to the ECP, clicked on Roles and Auditing and then User Roles the only policy applied is "Default role assignment".  When I select
  the details for this, under Distribution groups, "My Distribution Groups" is not ticked but my new one that I created "My DistributionGroupsManagement_Test" is.  So this looks ok.
  Any other ideas?
  Matt

• "changes to the distribution list membership cannot be saved. you do not have sufficient permission to perform this operation on this object"

  Running Exchange 2010/latest updates on Windows 2008 R2 servers.
  When I create a new DL that I want someone to manage, they received the following message when trying to add/remove from the DL:
  "changes to the distribution list membership cannot be saved.  you do not have sufficient permission to perform this operation on this object"
  I have followed everything in "http://msexchangeteam.com/archive/2009/11/18/453251.aspx" with no luck
  Any suggestions?

  Piggybacking off of the discussion above, with our deployment of Exchange 2007, we created a set of web-based tools that allowed people to create Exchange Resources including distribution lists.  To allow multiple people to manage the lists for a given
  department, we programmatically created a group, which is populated with one or more users from the "resource department".  We then set the following AD permissions to allow members of the group to manage membership of departmental distribution lists:
  Add-ADPermission -User DepartmentalGroup -AccessRights ReadProperty, WriteProperty -Properties 'Member' -DomainController dc.contoso.com
  Fast forward to Exchange 2010 and the landscape has changed with Exchange 2010's implementation of Role Based Access Control and I'm struggling to come up with a way to programmatically allow a group of users to manage distribution list membership for a
  subset of distribution lists - note that we have approximately 75 departments, with each having its own set of coordinators who should be able to manage distribution lists for their department but not lists created by other departments.  The specific
  error we receive in Outlook when attempting to modify group membership is the same as the title of this thread - "Changes to the distribution list membership cannot be saved.  You do not have sufficient permission to perform this operation on this object". 
  I implemented the settings referred to at
  http://sysadmin-talk.org/2010/06/omg-allowing-end-users-to-manage-distribution-group-membership-in-exchange-2010-2/ which details the process of creating a new management role and revoking the role's ability to create new distribution lists and remove distribution
  lists (which we want because we want those actions to be performed using our web tools). 
  All that to say that the ultimate problem we have is that the above relies on the "ManagedBy" field of a distribution list (viewable by Get-DistributionList Listname | fl *ManagedBy*) to determine group ownership.  When "ManagedBy" is set to a user,
  the user CAN edit a distribution list's membership from Outlook and OWA.  When "ManagedBy" is set to a group, members of the group are UNABLE to edit the membership of the distribution list via Outlook or Outlook Web Access/ECP.   Furthermore,
  Set-DistributionGroup does not allow you to specify a list of users to assign to the ManagedBy field.  However, if "ManagedBy" was set to a specific user and that user logs in to the Exchange Control Panel and adds additional "owners" of the distribution
  list, which I can then see from EMS - both the original owner and any additional owners added can in turn modify group membership for the list using Outlook or Outlook Web Access/ECP.
  My questions:
  1) Is it "expected" behavior that while I can assign a group to the "ManagedBy" property of distribution list, members of that group are still unable to edit the group membership?  ...or is there a fix for the behavior I'm seeing?
  2) Can multiple values be assigned to the "ManagedBy" property when using Set-DistributionList - ex: Set-DistributionList DLName -ManagedBy:user1,user2
  3) Any other suggestions?
  Thanks,
  -Lance

• How can I create email distribution lists in my contacts on my macbook air?

  How can I create email distribution lists in my contacts on my macbook air? I could do this on a pc using outlook, but I don't see how to do it on my new mac.

  UPDATE, ok, I figured out how to make a list, but how can I remove specific contacts from the list? The "Remove from Group" is greyed out & not available.

• How can I put a distribution list in my contacts for my iphone4s ?

  Can anyone tell me how to put a distribution list in your contacts?

  You can't.  There are various 3rd party apps that can create lists for group messaging.

• Copy distribution list  to all content services user folders

  We have an Outlook distribution list PST file that current resides in a Windows file server. This gets pushed out the the personal folder of each user overnight.
  Going forward, we need to push this PST file to all the Content Services user personal folders (Users-A, Users-B ... Users-Z).
  I created a single superuser that has all administrative rights to all the users personal folders. And I can upload a file through the webdav http interface.
  with the "Upload" button while I'm "Switched to Administrative Mode" only.
  And I can't see the users personal folders while using the Oracle Drive nor
  thru a Network drive.
  Is there a way of pushing this to all the users' personal folders???

  Hi Juan,
  I tried that but it is not showing the shared distribution list for moving.
  I found 1 sap BC office document which stats that moving the distribution list form Private to public is not possible due to security reason.
  So, no options for me and to create manual shared distribution list.
  Thanks
  Anil

• Is it possible to add distribution lists to iPad Contacts?

  I synced my contacts from Microsoft Outlook but it did not sync my distribution lists.

  There is an app you can get in the App Store,which will permit sending emails to groups.  Check it out:
  http://itunes.apple.com/us/app/mailshot-group-email-done/id410279354?mt=8

• Can't change my distribution lists in my contacts anymore

  When I make a change in my distributionlists (for example person x wants his mails on his private mail adrtes instead of his work adres) and then click on OK
  Contacts does not remember my changings anymore ...
  Working with mountain lion and icloud

  http://reviews.cnet.com/8301-13727_7-20126108-263/address-book-distribution-list -editor-disabled-by-icloud/
  I have not tested this.
  Best.

• Moving iLife 08 install from one machine to another (with a twist)

  Greetings. I have a complete backup of all the files from an iMac I recently sold. I had purchased a single user version of iLife 08 which is what is on the backup. Before selling the iMac, I reformatted the drive and put iLife 06 and Tiger back on it, keeping the iLife 08 update for myself.
  I have misplaced my iLife 08 program disk. It was the single user retail SKU of iLife 08 upgrade. I do have a complete backup from a PPC-based iMac that it had been installed on. I know the iLife 08 applications are universal since by trial and error I moved one app over to my new machine manually from the backup.
  I have a MacBook that originally shipped with Tiger. I bought a single user update to Leopard and installed that using erase and install. All good so far. Of course, this wiped out the iLife 06 that had been on the MacBook w/Tiger, but I have a backup of it. I also have the backup of my iLife 08. Both the Leopard and iLife 08 are legal copies obtained at retail. I have the leopard DVD but can't find ilife 08.
  I am sure I can somehow handpick the files from the iMac backup to put iLife 08 onto the Leopard-powered MacBook. I've already spend hours looking for the DVD but in the process of moving and just can't find it. So my question is the following:
  What directories do I need to copy from my backup to bring iLife 08 to life on the MacBook? I moved GarageBand over and by watching error messages figured out what to move, but would rather not go through this for all the apps!
  I am a loyal Mac user with quite a collection including iMacs, Minis, MacBook, had a couple of MacBook pros, and I've even got two XServes in production! I am evaluating Leopard and iLife 08 for use across the board. So far having some challenges with Leopard and web development tools preventing me from upgrading across the board. But for now this one MacBook will be my Leopard test bed.
  Help or links to places with this info appreciated. I will keep looking for that darned DVD in the meantime.

  yeh true the firewire drive doesnt need to be involved in the story at all... the only reason it is because I already backup my MBP to a firewire drive anyway - so I already have the new system/apps on that FW drive.
  I already have my mac pro's current system drive backed up to yet another FW drive, so yea if it does all go wrong I dont even need to do an archive and install, I can directly boot from the old FW drive.
  "This should work ok. I have a system on a firewire drive, and I can use it to boot up computer A or to boot up computer B, no problem. They are very different computers. So the same system can start up two very different computers."
  Thats very reassuring. If Apple does not disencourage that type of usage then I guess that answers my question. I dont know much about the internal workings of OSX, but was concerned that maybe when installing from the DVDs only the relevant drivers or kernel or something would be installed - etc especially regarding 2core MBP vs. 8core mac pro (it would still work when copying over the system, but not fully optimally) - maybe what I said is total bullcr*p, I dunno! anyways, I will try and do some benchmarks etc and put it through some testing when I get some time - I have my old FW backup to fall back to so its cool...

• [CUC] Convert Subscriber from AXL CCM User to LDAP Sync User

  I want to know if it's supported, and if so, how, to convert from AXL to LDAP when talking about subscribers in Unity Connection.
  I have found this post, which asks the question, but does not actually "convert", as it requires deleting and re-creating.
  https://supportforums.cisco.com/message/4044114#4044114
  I want to know about a true conversion.  As you do when you go from a local CUC subscriber to an LDAP Synced subscriber.
  I have tried using the store procedure: csp_subscribermodify, supplying the following params: pobjectid = the object id, palias = my AD user ID, pldapccmuserid = my AD user ID, pldaptype = 3, pccmid = null, and pccmidtype = 0.
  While the stored procedure looks like it worked, the web page for the subscriber looks a bit odd.  The alias changed, and the ldap sync status changes, but the normally greyed out fields, like alias, are still editible.  Also, none of the other LDAP attributes sync.  So, I'm convinced it didn't actually work.
  What am I missing to make this work?  Thanks.
  PS Jeff, if you see this, I enjoy your training videos.  "Easy Peasy!"
  Anthony Holloway

  Hi Anthony-
  Check out my answer to this thread:
  https://supportforums.cisco.com/message/3963782#3963782
  Please remember to rate helpful responses and identify helpful or correct answers.

• Associate eDir user object with GroupWise account

  After moving a user form secondary domain (GW802) to a new primary
  domain (GW2012) the association of edir object and GW account was lost.
  The user move state showed "completed" and i can see the user's db in
  the /ofuser directory. If i try to associate the GW account it is not
  listed in the po. I tried validation of the po and domain but i got no
  errors.
  Can i manually assign the userdb to the eDir object ?

  maxx,
  It appears that in the past few days you have not received a response to your
  posting. That concerns us, and has triggered this automated reply.
  Has your problem been resolved? If not, you might try one of the following options:
  - Visit http://support.novell.com and search the knowledgebase and/or check all
  the other self support options and support programs available.
  - You could also try posting your message again. Make sure it is posted in the
  correct newsgroup. (http://forums.novell.com)
  Be sure to read the forum FAQ about what to expect in the way of responses:
  http://forums.novell.com/faq.php
  If this is a reply to a duplicate posting, please ignore and accept our apologies
  and rest assured we will issue a stern reprimand to our posting bot.
  Good luck!
  Your Novell Product Support Forums Team
  http://forums.novell.com/

• Why, when exporting as master file from FCX, I have problem with sync

  I edited all audio of a short movie in protools, bounced a stereo file, imported it in final cut and shared the master file at prores 422, from there through compressor I have created 2  files (mpeg 2 and ac3) and burnt a  dvd but seems always to be out of sync , why?
  fortunately  i still have dvd studio pro that allow me to "nudge" the  audio to fix the problem, but all this is quite time consuming. 
  any advice?

  I have fixed some issue about audio and video, created a new project with correct sample rate, imported the master video at same frame rate, and in pt bounced  a new track of audio, so  no orange bar, everything fine in FCX,AUDIO AND VIDEO PERFECTLY IN SYNC.  i exported a master file at best current setting and in compressor have created a dvd setup hi quality, 2 pass vbr encoding mode etc
  and.. imported the m2v file and ac3 in DVD STUDIO PRO, and on time line i hear out of sync, now i don't know if the problem happen during the encoding in compressor or is dvd studio pro.

• When sending an email I used to be able to add a distribution list from my contacts, I now have to add each email address individually, does anyone know how I can add the whole list?

  When sending an email I used to be able to click on a distribution list in my contacts and it would add all the email addresses, I now have to add each email address individually and this takes a lot of time.  Could someone tell me how I can add a distibution list/group to my emails?

  Barney,
  I have four groups.
  I just typed the name of one of those groups in the To field on the iPhone's email, and received:
  Invalid Address
  "<group name>" does not appear to be a valid email address.  Do you want to send it anyway?
  I clicked continue and it remains in my outbox.
  Help is appreciated.
  Thanks,
  Michael

• "changes to the public group membership cannot be saved" error from Outlook 2010 users, but no problem with Outlook 2003.

  We have the exact same issue as this but our groups are already universal security group and we still have problem:
  http://social.technet.microsoft.com/Forums/en-NZ/exchangesvrmigration/thread/2c953cb4-5411-4f72-beb9-6b4c16fd6685
  The distribution-groups were upgraded to Exchange 2010.  User A can update the group from Outlook 2003 or OWA 2010 but not from Outlook 2010.  Anyone know the solution?
  thanks

  Hi lilyl,
  For this issue, please refer to this document:
  How to Manage Groups that I already own in Exchange 2010?
  http://blogs.technet.com/b/exchange/archive/2009/11/18/3408844.aspx
  So what does the "Changes to the distribution list membership cannot be saved. You do not have sufficient permission to perform
  this operation on this object." error mean, when you are connecting to an Exchange 2010 server?
  It means Exchange 2010 is doing its job - as designed...
  Thanks,
  Evan
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• Move a distribution list from the forest root to a sub domain.

  Hello,
  I am looking for the best way to migrate a distribution list I have in the AD forest root to a subdomain.  Is there a way to do this without rebuilding it from scratch?  We have Windows 2012 R2 domain controllers with a Windows 2008 R2 functional
  level.
  Thanks!
  Shawn

  Hi Shawn,
  We can try using intraforest migration with ADMT. With the lateste updated ADMT v3.2, it supports Windows Server 2012 and 2012 R2, and we can download it from Microsoft Connect.
  Microsoft Connect
  http://go.microsoft.com/fwlink/?LinkId=401534
  Regarding ADMT and how to install it, the following article can be referred to for more information.
  ADMT Guide: Migrating and Restructuring Active Directory Domains
  http://technet.microsoft.com/en-us/library/cc974332(v=WS.10).aspx
  Installing ADMT in the Target Domain
  http://technet.microsoft.com/en-us/library/cc974370(v=WS.10).aspx
  Besides, regarding this topic, the following thread foucsed on the similiar question and can be worth taking a look.
  Moving Distribution List From Root to Child DC
  http://social.technet.microsoft.com/Forums/en-US/1edf8eee-66d1-496a-b51d-48e1f2124eeb/moving-distribution-list-from-root-to-child-dc?forum=winserverDS
  TechNet Subscriber Support
  If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.
  Hope it helps.
  Best regards,
  Frank Shen