Had a very weird issue where users on prem couldnt access mailboxes for users online even though the permissions were correct.
The error was:
Cannot expand the folder. The set of folders cannot be opened.
Had a good google and the recommendations were to do the following which didnt work for me:
Connect to 365 and run:
#remove permissions
Remove-MailboxPermission -Identity Manager@bohemiangrove.co.uk -User User1@bohemiangrove.co.uk -AccessRights FullAccess
#Add permissions
Add-MailboxPermission -Identity Manager@bohemiangrove.co.uk -User User1@bohemiangrove.co.uk -AccessRights FullAccess -InheritanceType All -AutoMapping:$false
So what I did to fix this was to add this for
- Exit Outlook.
- Start Registry Editor. To do this, use one of the following procedures, as appropriate for your version of Windows:
- In Registry Editor, locate and then click the following registry subkey:
HKEY_CURRENT_USER\Software\Microsoft\Exchange
- On the Edit menu, point to New, and then click DWORD Value.
- Type AlwaysUseMSOAuthForAutoDiscover, and then press Enter.
- Right-click AlwaysUseMSOAuthForAutoDiscover, and then click Modify.
- In the Value data box, type 1, and then click OK.
- Exit Registry Editor.
Tags: Exchange 2010, exchange online, Office 2010, office 365
Posted by robd
on October 24, 2018
Exchange Online /
No Comments
As I mentioned in another post, you can force a EoL mailbox to take on a SMTP with this command:
Set-Mailbox User.Name -WindowsEmailAddress User.Name@Bohemiangrove.co.uk
But occasionally it won’t work:
The proxy address "SMTP:User.Name@Bohemiangrove.co.uk" is already being used by the proxy addresses or LegacyExchangeDN of "User.Name_bohemiangrove.co.uk#EXT#". Please choose another proxy address.
+ CategoryInfo : NotSpecified: (Adri Donkers:ADObjectId) [Set-Mailbox], ProxyAddressExistsException
+ FullyQualifiedErrorId : [Server=VI1PR04MB4349,RequestId=8938a92c-006d-4f9f-b230-937f591d20e4,TimeStamp=22/10
/2018 06:18:53] [FailureCategory=Cmdlet-ProxyAddressExistsException] 169E5E0,Microsoft.Exchange.Management.Rec
ipientTasks.SetMailbox
+ PSComputerName : ps.outlook.com
So to find who’s using the address you can search all of Azure using:
Get-Recipient | where {$_.EmailAddresses -match "User.Name@Bohemiangrove.co.uk"} | fL Name, RecipientType,emailaddresses
Tags: exchange online, PowerShell
Posted by robd
on October 23, 2018
Exchange Online /
No Comments
Strange issue today, synced a bunch of users from on prem to Exchange which was successful.
Then the user was missing his default SMTP address on EoL but the SMTP was there on prem:
EoL, no COM:
EX prem, has COM
First thing to check, is the domain setup as a accepted domain in EoL (should be as the migration would of failed otherwise).
Next you can “override” the sync process by using the following EoL cmdlet:
Set-Mailbox user@domain.com -WindowsEmailAddress new@domain.com
Tags: exchange online, PowerShell
Posted by robd
on October 12, 2018
Exchange Online /
No Comments
We recently started implementing Multiple Factor Authentication with office 365 and today I ran into a weird issue while working from home.
Laptop – Windows 10 1703
Outlook 2016 – 16.0.7726.1049
While opening Outlook 2016 I was prompted for my 365 credentials (over and over again) without any MFA prompt.
Would not not go away and would not connect.
So I checked
OWA – https://outlook.office365.com/owa – worked no problem and was prompted with MFA.
Teams – local install, worked no bother with MFA.
So I went to Azure Active Directory and could see loads of failed attempts:
Specifically: User did not pass MFA challenge (non Interactive)
So my guess was Outlook wasnt prompting me for MFA for what ever reason. I tried a new Outlook profile which wouldnt connect and the following registry entried to try and force basic connections from Outlook:
HKCU\SOFTWARE\Microsoft\Office\16.0\Common\Identity\EnableADAL
dword value 0
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
DisableADALatopWAMOverride
dword value 1
None of this worked so I went all out and did the following which fixed the issue:
- Sign out of Office 365
- Open Word
- In the upper-right corner of the Office 2016 app, click your name, and then click Switch Account.
- On the Accounts screen, click Sign out.
- Locate the account that you want to remove, and then click Sign out.
- Remove the cached credentials in Credentials Manager.
- To do this, follow these steps: Open Control Panel, and then click Credentials Manager.
- Under Windows Credentials, remove all the accounts under Generic Credentials
- Clear cached credentials on the computer from the registry.
- Click Start, click Run, type regedit, and then click OK.
- In Registry Editor, locate and backup then delete the following registry subkey:
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity\Identities
4. Launch Word and sign into Office 365 (it logged in without issue)
5. Launch Outlook and I was prompted for my MFA credentials and which I authenticated via my phone and I was in.
Tags: exchange online, Office 2016, office 365
Posted by robd
on February 06, 2018
Server /
1 Comment
Some users need shared mailboxes on their mobile devices, this can be done via IMAP.
Add a IMAP:
Add the shared mailbox email:
Choose IMAP
This is the most important section; add the user’s username and the name of the shared mailbox, for example: Rob@DOMAIN.LOCAL/SHARED.MAILBOX
Tags: exchange online, office 365
