It's a reasonable question. :) I didn't say you couldn't do it - I said it wasn't supported.
The Exchange Team reserves the right to move properties and their values between AD and MB databases, at their discretion. This has come up a couple of times in both Exchange 2010 and 2013. And it probably will in Exchange 2016. Probably the change that caused the most problems was moving the value for whether a mailbox was overlimit or not from AD to the MB database. This was done specifically to reduce the load on domain controllers. But it broke lots of scripts that read the value from AD. Without decompiling the specific cmdlet (ILSpy comes in very handy) that maintains the value you are interested in, no one can tell you whether the only value consulted and/or updated by the cmdlet is that one particular property in AD. From: [email protected] [mailto:[email protected]] On Behalf Of Haritwal, Dhiraj Sent: Monday, November 2, 2015 2:08 AM To: [email protected] Subject: RE: [Exchange] List Active Sync enabled Users Hi MBS, Sorry for writing you offline but I am curious to understand why we can't achieve it through AD. As I said I don't have Exchange Serer access hence need to get something from AD only. My understanding is, whatever attributes we set for an AD user, it will get stored in AD under user properties like SIP activation, SIP address / Active Sync Activation, Active Sync device details etc So my query is, when we have all these details in AD, can't we use it from AD itself without going to Exchange. Is it ever possible that a User's active Sync is working without having attribute msExchMobileMailboxFlags=1 on his AD user account. I can understand that in some cases it might be possible that somehow user mailbox policy (msExchMobileMailboxPolicyLink=*) was not set. Kindly correct me if my above understanding is not correct. Thanks for your support. Regards, Dhiraj From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Michael B. Smith Sent: 19 September 2015 21:02 To: [email protected]<mailto:[email protected]> Subject: RE: [Exchange] List Active Sync enabled Users I didn't say that. I said "Since Exchange 2007, what you are trying to do is non-supported except by using the Exchange PowerShell cmdlets." From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Haritwal, Dhiraj Sent: Saturday, September 19, 2015 1:27 AM To: [email protected]<mailto:[email protected]> Subject: RE: [Exchange] List Active Sync enabled Users MBS, Do you mean there is no attribute stored in AD for an active sync enabled user. There has to be something. Even mailbox details are stored in AD so should be..... Sent from my Sony Xperia(tm) smartphone ---- Michael B. Smith wrote ---- Then use something like wireshark or netmon. Since Exchange 2007, what you are trying to do is non-supported except by using the Exchange PowerShell cmdlets. From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Haritwal, Dhiraj Sent: Wednesday, September 16, 2015 2:52 PM To: [email protected]<mailto:[email protected]> Subject: RE: [Exchange] List Active Sync enabled Users Thanks, I don't have access to Exchange hence playing with AD only. Sent from my Sony Xperia(tm) smartphone ---- Kennedy, Jim wrote ---- >From Exchange Powershell: Get-CASMailbox -ResultSize Unlimited | where { $_.ActiveSyncEnabled -eq 'True'} | ft name, activesyncenabled From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Haritwal, Dhiraj Sent: Wednesday, September 16, 2015 2:40 PM To: [email protected]<mailto:[email protected]> Subject: [Exchange] List Active Sync enabled Users Hi, I am trying to list all Active Sync enabled users from AD powershell & running ldap query for below two AD attributes. Kindly suggest if it's the correct way or I should search any other AD attribute. msExchMobileMailboxFlags=1 msExchMobileMailboxPolicyLink=* Regards, Dhiraj ________________________________ This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway.. ________________________________ This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway.. ________________________________ This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway.. ________________________________ This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway..
