We have a series of policies based on a custom attribute, ex CustomAttribute1. the LDAP equivilent is extensionAttribute1 our managment is broken into 2 areas, messaging and Active directory. On a new user, if the extensionAttribute1 is set before the mailbox is created the policy runs as it should. If the attribute is set or changed after the mailbox is created, the policy does not update accordingly. If i change the CustomAttribute via shell, using set-mailbox, the eap will run on the mailbox. I have verified that when chnaged the attribute via shell, set-mailbox, or thru LDAP, aduc or scripting, they do update thier equivalent attribute respectively. We also have a two policies that update via the company attribute. these work as expected if this attribute is changed before or after the mailbox is created. so my questions are: Why would changing an LDAP equivalent of a customAttribute not cause the policy to run? So i set extentionAttribute1 in ADUC, it sets the proper value fof customAttribute1, the user is in the EAP list(get-recipient) but the user addresses are not changed accoding to the policy. But, if the Company attribute is changed, it will kick off the appropriate policy. Is there a known issue with using the customAttributes? in the end, im trying to figure out why this is happening so i can either update change the EAPs (this will NOT be preferred) or figure out another method. It is also not suggested to have all the messaging admins run the shell command or change the user attribute via EMC due to audit. we have a third party app that tracks changes to user accounts.

If i change the CustomAttribute via shell, using set-mailbox, the eap will run on the mailbox. This is a fundamental misunderstanding of EAP. Unlike RUS in 2003, it doesn't "run". EAPs are applied in accordance with their filters when the exchange tools are used to modify an object. If you are modifying objects outside of these tools and you want them to appear in the necessary address lists, you must run update-addresslist or update-globaladdresslist. These commands compare all objects with the policies and ensure they are appearing in the appropriate lists. http://forums.msexchange.org/m_1800443573/mpage_1/key_/tm.htm#1800443573 http://technet.microsoft.com/en-us/library/bb266966.aspx http://technet.microsoft.com/en-us/library/aa997982.aspx Mike Crowley: MCT, MCSE, MCTS, MCITP: Enterprise Administrator / Messaging Administrator Check out the new virtualization exams!