Rule description
This hybrid rule queries the specified Active Directory scope and for each returned Active Directory user account lookup the matching Microsoft 365 user and online mailbox, and then apply the mailbox settings defined by the rule.
When to use this rule
Use this rule to apply the necessary Microsoft 365 mailbox settings to the online mailboxes of the Microsoft 365 user accounts. This rule works with both cloud only and remote mailboxes.
Rule Settings
Query Section
Setting name | Description |
---|---|
Use previous provision rule results instead of AD query results |
When using this rule in a runbook, set this rule to use the result set of the previous rule in that runbook. This rule is often executed immediately after the assignment of a Microsoft 365 mailbox license rule. If you set this setting to Yes, both this rule and Microsoft 365 license assignment rule would have the same scope. You can use this option with the following rules:
|
Limit scope to this domain or OU |
This setting defines the search query scope. To improve query performance, limit the scope to specific OU. Important: To test rule configuration, limit the rule scope to an OU that contains test accounts or objects.
|
Query criteria |
Query criteria are sent with the query and may improve query performance. Tip: For different samples on the criteria builder, see KB20180410-1.
|
More options | |
Filter
|
To hide unwanted data based on criteria, set the filtering conditions here. Example: filter by found object Name. Tip: For optimal performance, use the Query criteria above to filter objects whenever possible.
|
Returned properties
|
To display additional properties for each object found by the query, add those properties to the list.
|
Sort by | Sort result objects list. |
Initialization Script | |
Script |
Usually, rules use query criteria to limit the query search scope. It improves the performance of the executed rule. Due to PowerShell limitations, it is not possible to use calculated expressions in query criteria. That is the point where the initialization script can help. You can initialize a global variable in this setting and then use it in query criteria. Example: Update AD users, created in the last ten days.
{$global:DatePeriod = (Get-Date).AddDays(-10)} 2. Use $DatePeriod variable in query criteria builder |
Action Section
Setting name | Description* |
---|---|
Wait for Microsoft Mailbox creation (minutes)
|
Because this rule is often executed immediately after the assignment of an Exchange Online license to the cloud user account, there is a built-in 15-minute time-out to allow the Microsoft cloud platform to complete the creation of the mailbox. |
Hide from GAL |
Specify whether this recipient is visible in address lists. |
Mailbox Size Limits
|
|
Maximum size of a message sent
|
Specify the maximum size of a message that can be sent by the mailbox. Provide an integer value, qualified with one of the following units:
The default value is 35840 KB. |
Maximum size of a message received
|
Specify the maximum size of a message that can be sent to the mailbox. Messages larger than the maximum size are rejected. Provide an integer value, qualified with one of the following units:
The default value is 35840 KB. |
Retention and Archival | |
Enable in-place archive |
Select Yes to create an in-place archive mailbox. |
Retention policy |
Select the retention policy enabled for your organization. |
Length of time to keep soft-deleted items |
Specify the length of time to keep soft-deleted items for the mailbox. Soft-deleted items are items that have been deleted by using such methods as deleting items from the Deleted Items folder or using Shift + Delete. To specify a value, enter it as a time span: dd.hh:mm:ss where dd = days, hh = hours, mm = minutes, and ss = seconds. The default value is 14 days (14.00:00:00). In Microsoft 365, you can increase the value to a maximum of 30 days. |
Litigation hold | |
Enable Litigation Hold
|
Specify Yes to place the mailbox on litigation hold. Specify No to disable the Litigation Hold. After a mailbox is placed on litigation hold, messages can't be deleted from the mailbox. Deleted items and all versions of changed items are retained in the Recoverable Items folder. Items that are purged from the dumpster are also retained and the items are held indefinitely. If you enable litigation hold, single-item recovery quotas aren't applied. |
Litigation hold duration (days) |
Specify the number of days the mailbox items are held if the mailbox is placed on litigation hold. The duration is calculated from the date a mailbox item is received or created. |
Enable In-place Hold |
Specify Yes to set an In-Place Hold on mailbox items. Specify No to disable an In-Place Hold. |
Enable In-place Hold duration (days) |
Specify the number of days for the In-Place Hold on the mailbox items. The duration is calculated from the time the item is received or created in the mailbox. |
Regional Settings | |
Language |
Specify the language preferences for this mailbox. Several Exchange components display information to a mailbox user in the preferred language if that language is supported. Some of those components include quota messages, non-delivery reports (NDRs), the Outlook on the web user interface, and Unified Messaging (UM) voice prompts. |
Time Zone |
Specify the time zone for the mailbox. A valid value for this parameter is a supported time zone key name (for example, "Pacific Standard Time"). |
Date Format |
Specify the date format string. For example, if the language is set to en-US, valid DateFormat parameter values include:
For more information about the date format strings, see Standard Date and Time Format Strings (https://go.microsoft.com/fwlink/p/?LinkId=784852). Tip: The specified date format should be valid for the current or specified language for the mailbox. |
Time Format |
Specify the time format based on the current or specified language value for the mailbox. For example, if the language is set to en-us, valid TimeFormat parameter values include:
|
Wait before applying regional settings (seconds) |
Specify the number of seconds to wait before applying regional settings for the created mailbox. |
Mailbox Auditing | |
Enable Auditing |
Specify Yes to enable mailbox audit logging and No to disable audit logging for the mailbox. If auditing is enabled, actions specified in the following parameters are logged: Mailbox operations to log for the mailbox (AuditOwner), Mailbox operations to log for the mailbox (AuditDelegate), and Mailbox operations to log for the mailbox (AuditAdmin). |
Maximum age of audit log
|
Specify the maximum age of audit log entries for the mailbox. Log entries older than the specified value are removed. The default value is 14 days (14.00:00:00). To specify a value, enter it as a time span: dd.hh:mm:ss where dd = days, hh = hours, mm = minutes, and ss = seconds. Setting this parameter to the value 00:00:00 removes all audit log entries for the mailbox. The entries are removed the next time the Managed Folder Assistant processes the mailbox. |
Mailbox operations to log for mailbox (AuditOwner) Mailbox operations to log for mailbox (AuditDelegate) Mailbox operations to log for mailbox (AuditAdmin) |
Select the mailbox operations from the list to log as part of mailbox auditing logging for mailbox owners, delegate users, and administrators respectively. You can add any required operation manually without using a picker. Use a comma as a delimiter. |
Email Connectivity |
|
Disable MAPI Disable POP3 Disable IMAP4 Disable Exchange ActiveSync Disable OWA Disable OWA for Devices |
Specify these settings to enable or disable access to the mailbox by using the corresponding protocol clients.
|
OWA mailbox policy ActiveSync mailbox policy |
Select from the list or specify the name of the corresponding Exchange policy.
|
Outlook settings |
|
Focused Inbox |
Enable or disable Focused Inbox for the mailbox. Focused Inbox is a replacement for Clutter that separates the Inbox into the Focused and Other tabs in Outlook on the web and newer versions of Outlook.
|
Reply all is the default response for messages |
Specify Yes to set Reply All as the default response for messages in Outlook on the web. |
Restrictions |
|
Accept messages from |
You can specify who can send messages to the users:
|
List of recipients to accept messages from |
Specify one or more user DistinguishedName, separated by ";". |
Require that all senders are authenticated |
Specify if all senders must be authenticated. |
Reject messages from |
You can specify from which users' messages must be rejected:
|
List of recipients to reject messages from |
Specify one or more user DistinguishedName, separated by ";". |
Junk Email |
|
Enable junk email rule |
Specify if the junk email rule should be enabled. |
Treat contacts as trusted |
Specify if contacts should be treated as trusted. |
Don't trust email outside safe senders list |
In addition to Safe Senders and Recipients and Blocked Senders, you can use this setting to treat all email as junk unless it comes from someone included in your Safe Senders and Recipients list |
Add to Safe Senders List |
Safe senders are domains and people whose email you don’t want diverting to your Junk Email folder. Add senders you trust and recipients that you don't want to block to this list. |
Add to Blocked Senders List |
Blocked senders are domains and people you don't want to receive email messages from. Messages received from any email address or domain in your blocked senders' list are sent directly to your Junk Email folder. |
Coexistence |
|
Set msExchMailboxGUID for remote mailbox
|
Specify Yes to have the ability to move the mailbox that created in Exchange Online to the on-premises Exchange organization. Note: For more information about this setting, see this KB: https://support.microsoft.com/en-us/kb/2956029
|
Other Properties |
|
Other AD properties to clear |
Specify Active Directory properties to clear. |
* Certain details and information for the settings are taken from Microsoft Docs.
Output Section
This section defines the output format of this rule.
To get more information about this section, please see the Output section article.
Enforce/Schedule section
This section defines the schedule for how often to run the rule.
To get more information about this section, please see the Enforce/Schedule section article.
Change History
Version | Notes |
---|---|
9.1.0 | The Junk Email section is added. |
7.4.0 | The Restrictions section is added. |
7.3.0 | The rule supports mapping between the Active Directory user account and the Cloud user account by anchor attributes. |
7.1.0 |
|
6.0.0 |
Wait before applying regional settings (seconds) setting added. |
5.4.0 |
The rule supports linking to web actions as rules to run after the web action. The Set msExchMailboxGUID for remote mailbox setting is set to Yes by default, to prevent errors moving the mailbox that was created in Exchange Online to the Exchange on-premises. |
Comments
0 comments
Please sign in to leave a comment.