user – Mohammed Wasay

Get Inactive Users Report for the past 60 days in a multi domain environment

February 18, 2020September 18, 2022

I had a request recently to provide an inactive user report for the past 60 days. Basically, find out which accounts have not logged in for the past 60 days so action can be taken against them. The request was for a multi domain forest which queries every domain controller and gets the latest lastlogon…

Provisioning a New Office 365 User and Mailbox from Exchange Hybrid via PowerShell

September 18, 2017

Working with many Office365 clients, I receive queries on how to go about provisioning users and mailboxes for an Exchange hybrid deployment. To begin with, letâ€™s assume aÂ couple things. We have a Windows 2012 R2 member server with Azure AD Connect (AAD Connect) version 1.1.105.00 (or newer) and the Azure AD Module for PowerShell installed;…

Adding a security group to the Local Administrator Group in AD

June 6, 2017

Having a local administrator of your workstations can come in handy. Sometimes you might need to logon locally to troubleshoot or rejoin a computer to your domain. You can create a group policy that creates a local admin users and sets the local password. Admins make a common mistake when they want to add a…

Set password never to expire for users in a particular domain (Bulk mode)

January 3, 2017January 3, 2017

Let me start by saying that I don’t recommend doing this at all. Password Never Expires is bad security practice, but there are situations that might require it. I had a similar request on how this could be done. Setting it for multiple users:

#Connect of Office365
Import-Module MSOnline
$O365Cred = Get-Credential
$O365Session = New-PSSession â€“ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $O365Cred -Authentication Basic -AllowRedirection
Import-PSSession $O365Session
Connect-MsolService â€“Credential $O365Cred 

#Get a List of user that belong to the second domain
$SDusers = Get-MsolUser -All -DomainName "yourseconddomain.com"

#Setting the password never to expire
ForEach($SDuser in $SDusers)
{
    Set-MsolUser -UserPrincipalName $SDuser -PasswordNeverExpires $true
}

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

#Connect of Office365

Import-Module MSOnline

$O365Cred = Get-Credential

$O365Session = New-PSSession â€“ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $O365Cred -Authentication Basic -AllowRedirection

Import-PSSession $O365Session

Connect-MsolService â€“Credential $O365Cred

#Get a List of user that belong to the second domain

$SDusers = Get-MsolUser -All -DomainName "yourseconddomain.com"

#Setting the password never to expire

ForEach($SDuser in $SDusers)

{

Set-MsolUser -UserPrincipalName $SDuser -PasswordNeverExpires $true

}

Setting it for a single user:

Get-MSOLUser -UserPrincipalName user@domain.com | Select PasswordNeverExpires

1	Get-MSOLUser -UserPrincipalName user@domain.com \| Select PasswordNeverExpires

Convert resource mailbox to a user mailbox

November 3, 2016

Based on my audit for a client I found that a user mailbox was at sometime converted to a resource mailbox. There is no convert button/ link to switch it back. I still don’t know how, or why this would have happened. Anyways, for someone who may come across this weird issue, here is the…

Cannot migrate user from Exchange 2010 to Exchange Online

August 19, 2015August 22, 2016

So I came across this error while migrating some accounts from On-Premise Exchange 2010 Server to Exchange Online. Error: The subscription for the migration user [email protected] couldn’t be loaded. The following error was encountered: A subscription wasn’t found for this user. In short, there is an address conflict between the user properties of the exchange…