Provisioning Linked Mailboxes in Cayosoft Administrator

In Cayosoft Administrator, you can provision user accounts with linked mailboxes that will be created in the Exchange resource forest. Linked mailboxes can be created in the on-premise Exchange server or Exchange Online (remote linked mailbox). You can create linked mailboxes in two ways: in the Cayosoft Web Portal and Cayosoft Administrator Console.

In Cayosoft Web Portal, you can create on-premise linked mailboxes and remote linked mailboxes.

In Cayosoft Administrator Console, you can create only remote-linked mailboxes.

Creating Linked Mailboxes in On-premise Exchange Server

When creating Linked Mailboxes in the On-premise Exchange Server using web action, the Cayosoft Administrator Service creates two accounts:

1. The master account in the account forest.

2. Linked mailbox account in the Exchange resource forest.

How to define if you have a Federated Domain in your tenant

1. Sign in to the Microsoft 365 admin center using an administrator account.

2. Click Show All.

3. Click Setup > Domains.

4. Click Choose columns.

5. Check Identities.

6. Click Save.

   Now in the Identities column, you can see if you have a federated domain in your tenant:

Creating Remote Linked Mailboxes in Non-Federated Domains

When creating Remote Linked Mailboxes in a non-federated domain using web action or automation rule, the Cayosoft Administrator Service creates three accounts:

1. The master account in the account forest.

2. Linked mailbox account in the Exchange resource forest.

3. Synced Microsoft 365 user account. Account properties will be taken from the master account and mailbox properties - from the linked mailbox account.

   After that the Cayosoft Administrator Service assigns licenses to create the Microsoft 365 account:

   • If the linked mailbox was created in the Web Portal , the Microsoft 365 accounts will be assigned the license specified on the wizard during linked mailbox creation.

   • If the linked mailbox was created by running the automation rule in the Cayosoft AdministratorConsole, create and schedule the AD Users | Enforce License (new) rule.

Creating Remote Linked Mailboxes in Federated Domains

When creating Remote Linked Mailboxes in the federated domain using web action or automation rule, Cayosoft Administrator Service creates two accounts:

1. The master account in the account forest.

2. Linked mailbox account in the Exchange resource forest.

   Then at the next start, Azure AD Sync creates the Microsoft 365 account with the value of the UserPrincipalName attribute of the master account. Account properties will be taken from the master account and mailbox properties - from the linked mailbox account.

   To assign the license for the created Microsoft 365 user account, configure and schedule the automation rule:

   • If the linked mailbox was created in the Web Portal, use theRemote Linked Mailboxes | Enforce License rule (deprecated) rule. This rule will assign Microsoft 365 licenses that were specified in the Web Portal during linked mailbox creation. The Microsoft 365 licenses that are specified in the rule itself will be ignored.

   • If the linked mailbox was created by running the automation rule in the Cayosoft Administrator Console, use the AD Users | Enforce License (new) rule.

Web Actions for Linked Mailboxes

There are two web actions in the Web Portal in AD Users web query to provision linked mailboxes:

• - create both a new user and a linked mailbox for him

• - create a linked mailbox for an existing user account You can grant permissions to delegated administrators to perform these Web Actions.

For more details on how to create linked mailboxes in the Web Portal, review the Work with user accounts article.

Automation Rules for Remote Linked Mailboxes

To perform a bulk provision of Active Directory users with remote mailboxes, you can use the following automation rules in the Cayosoft Administrator Console:

• Text file | Create AD Users with Remote Linked Mailbox

• Import SQL Data | Create AD Users with Remote Linked Mailbox

• Import Oracle Data Create AD Users with Remote Linked Mailbox

These rules work both for federated and non-federated domains.

Provisioning Linked Mailboxes: Step-by-step instruction

Configuring trusted domain in Cayosoft Administrator Console

Before provisioning linked mailboxes, you should verify trusted domain settings: what Domain Controller and credentials are specified:

1. In the Cayosoft Administrator Console, navigate to the Active Directory extension settings by following Configuration > Connected Systems Extensions > Active Directory. Refer to the following article for additional information: Active Directory extension settings

2. In the Managed Domains section, verify that the specified domain controller is correct.

3. Verify that the credentials specified for this domain controller are correct.

Creating linked mailboxes in the Web Portal

On-premise linked mailbox

1. Connect to the Web Portal.

2. In the Active Directory Admin Unit click AD Users web query.

3. In Actions click New User with Linked Mailboxor New Linked Mailbox

4. In Mailbox Type select On-premise Linked.

5. Complete the wizard.

Remote linked mailbox in non-federated domain

1. Connect to the Web Portal.

2. In the Active Directory Admin Unit, click the AD Users web query.

3. In Actions click New User with Linked Mailboxor New Linked Mailbox

4. In the Mailbox Type, select Remote Linked.

5. Complete the wizard.

Remote linked mailbox in federated domain

1. In the Cayosoft Administrator console, create Remote Linked Mailboxes | Enforce License rule rule.

2. In the Initialization Script section, specify this script:

   Copy

   {$global:TimeWindow = (Get- Date).AddHours(-1)}

3. In the AD query criteria, apply this filter: {whenCreated -ge $TimeWindow}, the rule will find user accounts in the resource forest created for the last hour.

4. Schedule this rule to run every hour.

5. Then in the Web Portal create remote linked mailboxes, using New User with Linked Mailboxor New Linked Mailbox web actions.

Creating remote linked mailboxes in the Administrator Console

1. Depending on the data source, create and configure one of these automation provisioning rules:

   • Text file | Create AD Users with Remote Linked Mailbox

   • Import SQL Data | Create AD Users with Remote Linked Mailbox

   • Import Oracle Data Create AD Users with Remote Linked Mailbox

2. Create the AD Users | Enforce License (new) rule.

3. In the Initialization Script section, specify this script:

   Copy

   {$global:TimeWindow = (Get- Date).AddHours(-1)}

4. In AD query criteria, apply this filter: {whenCreated -ge $TimeWindow}, the rule will find user accounts in the resource forest created for the last hour.