legacyExchangeDN user attribute
we recently renamed a users last name in active directory. Everything went well in active directory
and the e-mail change went well in exchange 2007. My only concern is that when users who are using outlook 2003 open their address book and browse for that user name, they see the new user name however the e-mail address
column is still holding on to the old user name CN (o=Domain/ou=Exchange Administrative Group
(FYDIBOHF23SPDLT)/cn=recipients/cn= “old user name”). When I do a get-email –identity in powershell I also see the
old name in the legacyExchangeDN. Is there any way I can change this for the user?
October 5th, 2010 11:34am
You can.... it will break 'replyability' of older messages since they actually cache that value. Best practice would be to add the old legacy Exchange DN in as an additional x.500 address so that replies to old messages don't bounce. Is the user concerned
about this (e.g. divorce?), if not, I'd ignore it rather than make changes.
Free Windows Admin Tool Kit Click here and download it now
October 5th, 2010 12:23pm
Yes the user is concerned.How do i go about doing this. Would i have to add a custom address?
October 5th, 2010 2:05pm
So i highly recommend creating a test mailbox and testing this before you do it to a production user just because ADSIEdit can be a powerful tool. But what you'll want to do is copy the existing LegacyExchangeDN to create as an x.500 address then modify
the existing value to reflect the proper name and add the address.
http://support.microsoft.com/kb/555197 and google search for modify LegacyExchangeDN ADSI edit for examples.
Free Windows Admin Tool Kit Click here and download it now
October 5th, 2010 2:51pm
On Tue, 5 Oct 2010 15:30:41 +0000, leopete wrote:
> we recently renamed a users last name in active directory. Everything went well in active directory and the e-mail change went well in exchange 2007. My only concern is that when users who are using outlook 2003 open their address book and browse for
that user name, they see the new user name however the e-mail address column is still holding on to the old user name CN (o=Domain/ou=Exchange Administrative Group (FYDIBOHF23SPDLT)/cn=recipients/cn= ?old user name?). When I do a get-email ?identity in powershell
I also see the old name in the legacyExchangeDN. Is there any way I can change this for the user?
Don't.
Changing the legacyExchangeDN property value has consequences. Public
folder ownership, free/busy data, folder permissons inmailboxes,
delegate access, etc. all depend on the legacyExchangeDN.
What you name things in the directory should be of no consequence to
anyone. What matters is the e-mail addresses. How someone finds
something in the AD (or the GAL) should be by using the searchable
properties. Check to see if there's an X500 address type in the user's
"E-Mail Addresses" tab. That may be what you're seeing in the e-mail
addresses.
---
Rich Matheisen
MCSE+I, Exchange MVP
--- Rich Matheisen MCSE+I, Exchange MVP
October 5th, 2010 10:31pm
there is no x500 address type in the users address book
Free Windows Admin Tool Kit Click here and download it now
October 7th, 2010 11:20am
On Thu, 7 Oct 2010 15:16:52 +0000, leopete wrote:
>there is no x500 address type in the users address book
So where is the legacyExchangeDN visible, then?
---
Rich Matheisen
MCSE+I, Exchange MVP
--- Rich Matheisen MCSE+I, Exchange MVP
October 7th, 2010 3:16pm