Upgrade Default Address Lists from LDAP

Hello,
I migrated from MS Exchange 2003 to 2010 some time back. Currently trying to upgrade the address lists as per the guide here:
http://technet.microsoft.com/en-us/library/dd351283.aspx
When I  run
Set-GlobalAddressList "Default Global Address List" -RecipientFilter {(Alias -ne $null -and (ObjectClass -eq 'user' -or ObjectClass -eq 'contact' -or ObjectClass -eq 'msExchSystemMailbox' -or ObjectClass -eq 'msExchDynamicDistributionList' -or ObjectClass -eq 'group' -or ObjectClass -eq 'publicFolder'))}I get the following error:what should I do? Thanks.

Hi Birenc,
the default Global Address List can be modified during the conversion from Exchange 2003. You won't be able to do it after that hence the error message.
1- Run Get-GlobalAdressList | fl and check the IsDefaultGlobalAddressList value. I believe in your case this would be False.
2- To change this you would need to change the msExchRecipientFilterFlags attribute. you can do this via ADSIEDIT. Open ADSIEDIT connect to the Configuration container. Find the Default Global Address List and change the above attribute value from 3 to
0 and apply the changes. Then change it back to 3 and apply changes.
3- Run GlobalAdressList | fl again and the IsDefaultGlobalAddressList value should now be true.
This should fix your issue.
ecsword

Similar Messages

  • Is there a way to remove Exchange global address list from phone/Mail app?

    I have an iPhone 5 running iOS 7.0.3. Wondering if there is a way I can prevent an Exchange global address list from loading when I compose a message. I am only syncing Mail - not contacts or calendars. Also tried dropping and re-adding account to see if that did anything. This is a personal phone connected to company's Exchange account (legitimately) - I would like to reduce the chance that I incorrectly email a company employee from my personal account when composing a message.

    That is what I expected Chris, but to answer your question - yes. I have two accounts setup with the Mail app - Gmail and Exchange. Gmail is the default even. When I am in the Gmail account, compose a new message, just typing "john" for example, brings up most recently used john's first, then all the Johns in my company. I really would prefer not to even have those names populate. Not sure if that can be prevented without dropping the Exchange mail account altogether. That is my question - and thank you for your reply.

  • To get GAL of non default address book from multiple accounts in outlook

    I have two domain accounts configured in my outlook, for example [email protected] and [email protected]
    There are 2 address books (Please refer to the picture attached). I want to show user to SelectNameDialog by adding the recipients from non-default account's address book. But it adds the names to the selectnamedialog from the default address book and displays.
    C# code : Outlook.SelectNamesDialog snd = app.Session.GetSelectNamesDialog();
    How to get non-default account’s address book programmatically.
    ThankYou for your suggestion.
    Note: I am not able to attach the image

    Hello,
    > Note: I am not able to attach the image
    It seems you need to verify your account. See How
    to Verify Your MSDN/TechNet Forums Account So that You Can Post Images and Links.
    > How
    to get non-default account’s address book programmatically.
    void DisplayGlobalAddressListForStore()
    Outlook.Folder currentFolder =
    Application.ActiveExplorer().CurrentFolder
    as Outlook.Folder;
    Outlook.Store currentStore = currentFolder.Store;
    if (currentStore.ExchangeStoreType !=
    Outlook.OlExchangeStoreType.olNotExchange)
    Outlook.SelectNamesDialog snd =
    Application.Session.GetSelectNamesDialog();
    Outlook.AddressList addrList =
    GetGlobalAddressList(currentStore);
    if (addrList != null)
    snd.InitialAddressList = addrList;
    snd.Display();
    public Outlook.AddressList GetGlobalAddressList(Outlook.Store store)
    string PR_EMSMDB_SECTION_UID =
    @"http://schemas.microsoft.com/mapi/proptag/0x3D150102";
    if (store == null)
    throw new ArgumentNullException();
    Outlook.PropertyAccessor oPAStore = store.PropertyAccessor;
    string storeUID = oPAStore.BinaryToString(
    oPAStore.GetProperty(PR_EMSMDB_SECTION_UID));
    foreach (Outlook.AddressList addrList
    in Application.Session.AddressLists)
    Outlook.PropertyAccessor oPAAddrList =
    addrList.PropertyAccessor;
    string addrListUID = oPAAddrList.BinaryToString(
    oPAAddrList.GetProperty(PR_EMSMDB_SECTION_UID));
    // Return addrList if match on storeUID
    // and type is olExchangeGlobalAddressList.
    if (addrListUID == storeUID && addrList.AddressListType ==
    Outlook.OlAddressListType.olExchangeGlobalAddressList)
    return addrList;
    return null;
    Setting the InitialAddressList property is the programmatic equivalent to selecting an AddressList from the drop-down list for Address Book in
    the Select Names dialog box.
    In its default state, InitialAddressList is the AddressList that has the property AddressList.IsInitialAddressList set
    to True. IsInitialAddressList corresponds to setting Show this address list first in the Addressing dialog
    box, which is available by clicking Tools, and then Options in the Address
    Book dialog box.
    See How to: Get the Global Address List or a Set of Address Lists for a Store for more information.

  • Hide Custom Address List from GAL Exchange 2010 SP2

    So, here is the scenario. 
    I have a list of contacts that I only want 12 users to be able to see.  I have read up on the Address Book Policies, however, what I am REALLY wanting to do is to create an address list of the contacts, and hide THAT from the gal.  I could then
    create a new GAL/Address Book Policy that includes the new address list of contacts, and essentially make the GAL + Contacts address list visible to that group of 12.
    Is this possible?  It seems silly to apply a new Address Book Policy to 3000 users, would rather apply a new policy to the 12 users that need to see the contact info
    TAG

    See if the following discussions of Address Book Policies answer your questions: 
    http://technet.microsoft.com/en-us/library/hh529948(v=exchg.141).aspx
    http://technet.microsoft.com/en-us/library/hh529930.aspx

  • Retriving user list from ldap (username - first and last, dn, cn)

    Hi,
    I tried connecting LDAP server and succesfully connected and now i need to get userlist from LDAP can anyone give me a sample code to get userlist from LDAP.
    public static boolean testLDAP() {
                   InitialDirContext ctx = null;
                   try {
                           Hashtable htbl = new Hashtable();
                           htbl.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
                           htbl.put(Context.PROVIDER_URL, "ldap://padl:389");
                           htbl.put(Context.URL_PKG_PREFIXES, "com.sun.jndi.url");
                           htbl.put(Context.REFERRAL, "ignore");
                           htbl.put(Context.SECURITY_AUTHENTICATION, "simple");
                           htbl.put(Context.SECURITY_PRINCIPAL, "cn=administrator");
                           htbl.put(Context.SECURITY_CREDENTIALS, "password");
                           ctx = new InitialDirContext(htbl);                       
                           if (ctx != null) {
                                   ctx.close();
                                   return true;
                   catch (NamingException e) {
                           System.out.println("Error Connecting to LDAP Server.");
                           System.out.println(e.toString());
                           ctx=null;
                           return false;
                   return false;
           }Thank You.

    Ok here is the code to fetch userlist(First Name, Last Name, cn, dn, mail) from LDAP.
    import java.util.Hashtable;
    import javax.naming.Context;
    import javax.naming.NameNotFoundException;
    import javax.naming.NamingEnumeration;
    import javax.naming.NamingException;
    import javax.naming.directory.Attributes;
    import javax.naming.directory.DirContext;
    import javax.naming.directory.InitialDirContext;
    import javax.naming.directory.SearchControls;
    import javax.naming.directory.SearchResult;
    public class UserListFromLDAP
       public static void main(String args[])
          Hashtable env = new Hashtable();
          env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
          env.put(Context.PROVIDER_URL,"ldap://host:389");
          DirContext ctx;
          try {
             ctx = new InitialDirContext(env);
          } catch (NamingException e) {
             throw new RuntimeException(e);
          NamingEnumeration results = null;
          try {
             SearchControls controls = new SearchControls();
             controls.setSearchScope(SearchControls.SUBTREE_SCOPE);
             results = ctx.search("", "(objectclass=person)", controls);
             while (results.hasMore()) {
                SearchResult searchResult = (SearchResult) results.next();           
                Attributes attributes = searchResult.getAttributes(); 
                System.out.println("dn----------> "+searchResult.getName());
                System.out.println("cn----------> "+attributes.get("cn").get());
                if (attributes.get("givenName")!=null)
                     System.out.println("First Name--> "+attributes.get("givenName").get());
                System.out.println("Last Name---> "+attributes.get("sn").get());
                System.out.println("Mail--------> "+attributes.get("mail").get()+"\n\n");
          } catch (NameNotFoundException e) {
               System.out.println("Error : "+e);
          } catch (NamingException e) {
             throw new RuntimeException(e);
          } finally {
             if (results != null) {
                try {
                   results.close();
                } catch (Exception e) {
                     System.out.println("Error : "+e);
             if (ctx != null) {
                try {
                   ctx.close();
                } catch (Exception e) {
                     System.out.println("Error : "+e);
    }Here is the code to search user from LDAP based on cn and sn
    import java.util.Hashtable;
    import javax.naming.Context;
    import javax.naming.NameNotFoundException;
    import javax.naming.NamingEnumeration;
    import javax.naming.NamingException;
    import javax.naming.directory.Attributes;
    import javax.naming.directory.DirContext;
    import javax.naming.directory.InitialDirContext;
    import javax.naming.directory.SearchControls;
    import javax.naming.directory.SearchResult;
    public class LDAPUserSearch
       public static void main(String args[])
          Hashtable env = new Hashtable();
          env.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.jndi.ldap.LdapCtxFactory");
          env.put(Context.PROVIDER_URL,"ldap://host:10389");
          DirContext ctx;
          try {
             ctx = new InitialDirContext(env);
          } catch (NamingException e) {
             throw new RuntimeException(e);
          NamingEnumeration results = null;
          // give either cn or sn to check     
          String cn = "Common Name";
          String sn = "lastName";
          try {
             SearchControls controls = new SearchControls();
             controls.setSearchScope(SearchControls.SUBTREE_SCOPE);
             if(!cn.equalsIgnoreCase("") && !sn.equalsIgnoreCase("")){
                  System.out.println("Please test with either cn or sn");
             else if(cn!=null && !cn.equalsIgnoreCase("")){
                  System.out.println("Result based on cn:");
                  results = ctx.search("", "(cn="+cn+")", controls);
             else if(sn!=null && !sn.equalsIgnoreCase("")){
                  System.out.println("Result based on sn:");
                  results = ctx.search("", "(sn="+sn+")", controls);
             else{
                  System.out.println("No results found");
             while (results.hasMore()) {
                 SearchResult searchResult = (SearchResult) results.next();
                 Attributes attributes = searchResult.getAttributes();
                 System.out.println("Full Name:--------> "+attributes.get("cn").get());
                 if(attributes.get("givenName")!=null)
                      System.out.println("First Name:-------> "+attributes.get("givenName").get());
                 System.out.println("Last Name:--------> "+attributes.get("sn").get());
                 System.out.println("Mail:-------------> "+attributes.get("mail").get());
          } catch (NullPointerException e) {
               // Leave this...
          catch (NameNotFoundException e) {
             System.out.println("Error : "+e);
          } catch (NamingException e) {
             throw new RuntimeException(e);
          } finally {
             if (results != null) {
                try {
                   results.close();
                } catch (Exception e) {
                     System.out.println("Error : "+e);
             if (ctx != null) {
                try {
                   ctx.close();
                } catch (Exception e) {
                     System.out.println("Error : "+e);
       public static void common() {
    }

  • Default address in "from" field?

    I have 4 e-mail accounts that Mail checks. When I write an e-mail (that is not an answer) I want the "from" address to be my Mac account. Mail does not remember this.
    If I LOOK in another mailbox, then Mail changes the "From" to be from that mail box account. How do I set the default to always be my Mac account??

    Any way I can set the default "from" field based on the account I'm sending from?
    I have two accounts defined: work and personal. Each account has 2 email addresses associated with it (as a comma-separated list in the "Email Address" field under "Account Information"). Let's call the email addresses work-A, work-B, personal-A, personal-B.
    In the Composing prefs I can either select ONE default email address to send ALL mail from, or I can select to send from "Account of Last Viewed Mailbox", in which case Mail will choose a work email address if I'm in a work mailbox and a personal email address if I'm in a personal mailbox.
    That second option is great, except I can't control which work email address it chooses - A or B. Changing the order of the email addresses in the Account Information->Email Address field has no effect - it consistently chooses the "wrong" one :-/
    Any way I can use "Account of Last Viewed Mailbox" and still set a default mail address per account?

  • How do I change the default address book from the Personal Address Book?

    Whenever I click on an email address from within an email and ask to add it to my address book, the contact is added to Personal Address Book. How do I change that so that new addresses will be added to another book?

    I do not know of a way to change the default but after you click the star beside the address to add it to the address book, click the star a second time to open the edit dialog box. There is a drop down list of your address books to make the change there.

  • How do I copy and paste an address list from an Excel file to an email on my iPad2?

    I am using Dropbox to maintain email and text lists. How do I copy and paste these lists into the email "to" box on my iPad2 and iPhone?

    I do not fully understand your question. However, you can use the GoodReader app to download and excel file from DP and open it is GoodReader. Then copy the address abd paste it in the email.

  • Can I make a paper group address list from a Contacts group list?

    I can't find a way to do this now. It used to be a simple thing -- with the aid of  a third party app--  to print all pertinent info for members of a Contact group in an compact list.
    Anyone know how to do this, or how to post such info into the Cloud?
    TIA

    From Contacts help:
    Print information
    Select one or more contacts or a group. If contacts in a group have multiple email addresses, street addresses, or phone numbers, you can choose which to use.  Select addresses for group members  Choose File > Print. Choose the print style from the Style pop-up menu, and then set related options. If you don’t see the Style pop-up menu, click Show Details.  Mailing labels: Click Layout and choose a label type from the Page pop-up menu. To set page margins and gutter space between labels, and how many labels to print per page, choose Define Custom. Click Label and choose the address to print from the Addresses pop-up menu (for example, print a label for each contact’s home address). Use other Label options to specify the print order, include a company for business mailings or a country for international mailings, or add a graphic.  Envelopes: Click Layout and choose the envelope type from the Layout pop-up menu. If you’re using a non-standard envelope size, choose Define Custom, and then enter the dimensions. Click Label and specify whether to include your return address. Choose the contact address to print from the Addresses pop-up menu (for example, print a label for each contact’s home address). Use other Label options to choose the print order, include a company for business mailings or a country for international mailings, or to add a graphic to the envelopes.  To choose the direction in which to feed the envelopes into the printer, click Orientation.  Lists: Select the paper size and orientation, and then use the Attributes list to select which fields to include. Pocket Address Book: Select the paper size and orientation, and then use the Attributes list to select which fields to include. Choose between the indexed and compact formats using the Flip Style option. Show Tips for printing a pocket book
    I haven't tried it because I don't use groups. I hope this helps.

  • Outlook Connector - Global Address list

    Our Outlook hangs when we try to open the Global Address List from LDAP. This totally locks the computer.
    What should be done to overcome the problem?

    What do you see in the LDAP access log when you do this?
    It's possible that your global list is returning more entries than your ldap is configured to allow, ad Outlook isn't happy with the results. It's also possible that the search is simply taking a loooong time.

  • Updating Global Address Lists and its corresponding attributes

    What do these attributes have to do with the updating of global address lists?
    1.msExchAddressBookFlags
    2.msExchModerationFlags
    3.msExchProvisioningFlags
    and what exactly happens with showInAddressBook when hide from address lists are selected or unselected?? 

    Hi,
    1. MSExchAddressBookFlags attribute is a flag about the default address list to display for Outlook users address lists. When the value is set to 0, the user would set Contacts as the default address list, when the user opens Address Book, it firstly displays
    user’s Contact.
    2. MsExchModerationFlags attribute on the Distribution Group indicates if sending the auto approval to senders.
    3. About the msExchProvisioningFlags attribute, there is no official article explaining it. Your understanding will be appreciated.
    Hope this can be helpful to you.
    Best regards,
    Amy Wang
    TechNet Community Support

  • CFExchange Accessing Global Address Lists

    Is there a way to grab the global address list from exchange
    with the new cfexchange tags? I can only seem to pull back contacts
    for a specific user.
    Thanks!
    Joe

    I suggest posting the problem again, this time in Getting Online and Networking. Make sure you indicate that you are on an external network, and include details of the LDAP server system. There are some serious experts there.
    Also, you could try asking your network administrator to allow access from your ip address ...
    AK

  • Outlook 2002 address list with SUN JES 6

    I found the performance problem to use Outlook 2002 to list my company address book from LDAP server ( approx. 16000 names ) . It take a long time to response back. It is Outlook problem or LDAP problem. We use JES 6.
    Thanks

    Well, first, neither of your problems are truly our area of expertise, here. We know Messaging Server, not Outlook nor Directory Server well.
    I suspect, though, that I may have an answer for you. Here's how to tell:
    1. Look at your Directory Server's Access Log. Specifically look for the ldap searches your Outlook clients are doing.
    2. Look at the return for that search. Check two things:
    A. etime= this is how long the search takes. If it's more than zero, then you have an LDAP performance issue.
    B. NOTES=U. If you see this, your search is unindexed, and that's why it's taking so long. You need to index the things you're searching on, and that'll fix you right up.

  • Exchange 2010 New Address List insufficient access rights

    Hi,
    I have tried to perform two actions within our new Exchange 2010 system and they fail with the same error.
    The first was to convert an existing Address Lists using LDAP to OPATH
    I used the following command:
    set-addresslist "Exchange 2010 Test" -recipientfilter {(recipienttype -eq "MailUniversalSecurityGroup") -or (recipienttype -eq "MailUniversalDistributionGroup") -and (name -like "exchange2010.*")}
    I get the error Access is Denied Active Directory response 00000005: SecErr: DSID-031521D0, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
    I also get the same error when I use the Exchange 2010 EMC to try and create a new address list.  Note I have no problems managing address lists from Exchange 2003.
    I have seen plenty of articles about the making sure that the user performing the action has the "Include inheritable permissions from this objects parent". 
    I did check my Exchange admin user and this was not ticked.  Turns out that because I was also a domain admin so my account was in a protected group (Domain admins) the tick box was continually being removed.
    I created a new Exchange user that was in the Exchange Organization Administrators security group, made sure the above box was ticked on the account but this did not fix the problem.
    I have however noticed in Adsiedit that the "CN=All Address Lists" container does not have the "Include inheritable permissions from this objects parent" ticked.  I suspect that this might be the issue but I don't want to tick it
    in case it breaks my address lists.
    Should the inherit box be ticked on the "CN=All Address Lists" container?.  It is ticked on all the containers under the "CN=All Address Lists" container. 
    At present the only Exchange permissions on the container are:
    Exchange Admins: Full Control
    Exchange Domain Servers: Read
    Exchange Services: Full Control
    I think that crucially the "Exchange Trusted Subsytem" security group is not listed
    I have added my new Exchange account with Full control permissions but this has not made a difference
    Your hopefully
    Matt

    Hi Matt,
    From your description, I would like to clarify the following things:
    1. "Include inheritable permissions from this object's parent" should be checked.
    2. "Exchange Trusted Subsystem" should be added to the All Address Lists container.
    So you are in the right direction.
    Hope this can be helpful to you.
    Best regards,
    Amy Wang
    TechNet Community Support

  • Disable Global address list suggestions when composing e mail

    I got a question of one of my users a few days ago pointing out that when using an Iphone with Active Sync / Exchange synchronisation he is not able to disable e mail address suggestions he gets when typing the e mail address in the TO field comming from the Global Address list.
    My user wants to use his personal contacts he uses in Outlook, but does not want to use the Global Address list from exchange. (at least not the automatic suggestions which pop up during typing an e mail in the TO / CC fields when composing an E mail.
    I am able to disable this in the Contract app, but not in the E mail app in IOS.
    It seems that when I enable to sync the contacts I get both the Personall contacts plus the Global Address list, there is no way to set any setting in regard to the contacts here.
    I cannot find any setting which disables the phone of looking up the address I am typing in the Global Address list, having a verry big corporate global address list (we use this in our desktop / outlook environment) this can be verry annoying.
    Anyone who can tell me if I can disable this (or not) and if so point me in the right direction ?
    Thank you

    What device do you have? And what is missing? You Compose a message, choose a name, then they have email addresses missing? or the contact is missing?
    BlackBerry Help
    www.blackberryboards.com

Maybe you are looking for

  • HT201272 I cant download my purchased music onto my new iPhone 5. I bought almost all my music through iTunes over my phone but it wont let me download "ALL"--I have to go in individually to each album.

    I cant download my purchased music onto my new iPhone 5. I bought almost all my music through iTunes over my phone but it wont let me download "ALL"--I have to go in individually to each album. Can anyone help me figure out how to do a single "ALL" m

  • Error during sales return Delivery

    Dear Friends, I am Getting error while doing sales return processing in VL01n - Goods Issue. Error Message - Status of Inspection Lot 0600000002 / Partial Lot does not allow Goods issue. I have already done the settings in config, Assign Inspection L

  • IDOC Inbound Problems

    Hi there experts, I've been through a lot of blogs, websites, google, SCN and others, but I can't find a solution for my problem. We need to create an interface ECC > PI using IDOC. All config were done to make it happen. When the IDOC is sent to PI

  • Alignment guides

    I have smart guides turned on in CS5 and am moving an object around another object and see the alignment guides that come out horizontally, though I am not sure what they indicate? I get a horizontal line when one shape is next to another, is this si

  • Assessment cycle- Transport

    Hi All, The assessment cycles are configured in the Development system.  The transport created was released to integration and quality.  We found that the segment do not reflect the way it is in Development system. We want to transport the configurat