IT tutorials
 
Technology
 

Exchange Server 2010 : Managing User Accounts and Mail Features (part 3) - Understanding Logon Names and Passwords - Creating Mail-Enabled User Accounts

8/28/2013 9:58:32 AM
- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019

5. Understanding Logon Names and Passwords

Before you create a domain user account, you should think for a moment about the new account's logon name and password. You identify all domain user accounts with a logon name. This logon name can be (but doesn't have to be) the same as the user's e-mail address. In Windows domains, logon names have two parts:

  • User name The account's text label

  • User domain The domain where the user account exists

For the user Williams whose account is created in adatum.com, the full logon name for Windows is .

User accounts can also have passwords and public certificates associated with them. Passwords are authentication strings for an account. Public certificates combine a public and private key to identify a user. You log on with a password by typing the password. You log on with a public certificate by using a smart card and a smart card reader.

Although Windows displays user names to describe privileges and permissions, the key identifiers for accounts are security identifiers (SIDs). SIDs are unique identifiers that Windows generates when you create accounts. SIDs consist of the domain's security ID prefix and a unique relative ID. Windows uses these identifiers to track accounts independently from user names. SIDs serve many purposes; the two most important are to allow you to easily change user names and to allow you to delete accounts without worrying that someone could gain access to resources simply by re-creating an account with the same user name.

When you change a user name, you tell Windows to map a particular SID to a new name. When you delete an account, you tell Windows that a particular SID is no longer valid. Afterward, even if you create an account with the same user name, the new account won't have the same privileges and permissions as the previous one because the new account will have a new SID.

5.1 Creating Mail-Enabled User Accounts

Mail-enabled users are defined as custom recipients in Exchange Server. They have an Exchange alias and an external e-mail address, but they do not have an Exchange mailbox. All e-mail messages sent to a mail-enabled user are forwarded to the remote e-mail address associated with the account.

In the Exchange Management Console, mail-enabled users are listed as such in the Recipient Configuration node and in the Mail Contact node. You can manage mail-enabled users through the Exchange Management Console and the Exchange Management Shell.

In the Exchange Management Console, you can create a new mail-enabled user by completing the following steps:

  1. In the Exchange Management Console, expand and then select the Recipient Configuration node.

    Note

    If you want to create the user account in a domain other than the current one, you first need to set the scope for the Recipient Configuration node.

  2. Right-click the Recipient Configuration node, and then select New Mail User. This starts the New Mail User Wizard.

  3. Click Next to accept the default selections on the Introduction page (to create a mail user).

  4. On the User Information page, shown in Figure 5 the Organizational Unit text box shows where in Active Directory the user account will be created. By default, this is the Users container in the current domain. Because you'll usually need to create new user accounts in a specific organizational unit rather than in the Users container, select the Specify The Organizational Unit check box, and then click Browse. In the Select Organizational Unit dialog box, choose the location in which to store the account and then click OK.

  5. Type the user's first name, middle initial, and last name in the text boxes provided. These values are used to create the Name entry, which is the user's display name.

  6. As necessary, make changes to the Name text box. For example, you might want to type the name in LastName FirstName MiddleInitial format or in FirstName MiddleInitial LastName format. The name must be no more than 64 characters in length.

  7. In the User Logon Name text box, type the user's logon name. Use the drop-down list to select the domain with which you want to associate the account. This sets the fully qualified logon name.

  8. The first 20 characters of the logon name are used to set the pre–Windows 2000 logon name, which must be unique in the domain. If necessary, change the pre–Windows 2000 logon name.

    Configure the mail-enabled user's settings.

    Figure 5. Configure the mail-enabled user's settings.

  9. Type and then confirm the password for the account. This password must follow the conventions of your organization's password policy. Typically, this means that the password must be at least six characters in length and must use three of the four available character types: lowercase letters, uppercase letters, numbers, and symbols.

  10. If you want to ensure that the user changes the password at next logon, select the User Must Change Password At Next Logon check box. Click Next. As shown in Figure 6 the Exchange alias is set to the user's logon name by default. You can change this value by entering a new alias. The Exchange Management Console uses the alias to set the user's e-mail address.

  11. To the right of the External E-Mail Address text box is an Edit button. Click the down arrow next to the Edit button to display two options:

    • SMTP Address Select SMTP Address to associate a standard SMTP e-mail address with the user. Enter the e-mail address, and then click OK.

    • Custom Address Click Custom Address to associate a custom e-mail address with the user. Enter the e-mail address, and then enter the e-mail address type. Click OK.

  12. Click Next, and then click New. The Exchange Management Console creates the new user and mail-enables it. If an error occurs, the user will not be created. You will need to correct the problem and repeat this procedure. Click Finish.

Configure the user's mail settings.

Figure 6. Configure the user's mail settings.

You can list all mail-enabled users by typing get-mailuser at the Exchange Management Shell prompt. Example 1 provides the full syntax and usage for Get-MailUser.

Example 1. Get-MailUser cmdlet syntax and usage

Syntax
Get-MailUser [-Identity Identifier | -Anr Name] [-Credential Credential]
[-DomainController FullyQualifiedName] [-Filter FilterString]
[-IgnoreDefaultScope {$true | $false}] [-Organization OrgName]
[-OrganizationalUnit OUName] [-ReadFromDomainController {$true | $false}]
[-ResultSize Size] [-SortBy Value]


Usage
Get-MailUser -Identity "aaronl" | fl

Get-MailUser -OrganizationalUnit "marketing" | fl

Note

By default, Get-MailUser lists the name and recipient type for matches. In the example, fl is an alias for Format-List and is used to get detailed information about matching entries.

You can create a new mail-enabled user account using the New-MailUser cmdlet. Example 2 shows the syntax and usage. When prompted, provide a secure password for the user account.

Note

The syntax and usage are entered on multiple lines for ease of reference. You must enter the command-line values for a cmdlet on a single line.

Example 2. New-MailUser cmdlet syntax and usage

Syntax
New-MailUser -Name DisplayName -ExternalEmailAddress EmailAddress
{AddtlParams1}

New-MailUser -Name DisplayName -ExternalEmailAddress EmailAddress
-Password Password -UserPrincipalName UserNameAndSuffix {AddtlParams1}

New-MailUser -Name DisplayName -FederatedIdentity FederatedId
-WindowsLiveID WindowsLiveId {AddtlParams2}

New-MailUser -Name DisplayName -Password Password -WindowsLiveID
WindowsLiveId [-EvictLiveId {$true | $false}] {AddtlParams2}

New-MailUser -Name DisplayName -WindowsLiveID WindowsLiveId
-UseExistingLiveId {$true | $false} {AddtlParams2}

{AddtlParams1}
[-Alias ExchangeAlias] [-ArbitrationMailbox ModeratorMailbox]
[-DisplayName Name] [-DomainController FullyQualifiedName] [-FirstName
FirstName] [-Initials Initials] [-LastName LastName]
[-MacAttachmentFormat <BinHex | UuEncode | AppleSingle | AppleDouble>]
[-MessageBodyFormat <Text | Html | TextAndHtml>] [-MessageFormat <Text |
Mime>] [-ModeratedBy Moderators] [-ModerationEnabled <$true | $false>]
[-Organization OrgName] [-OrganizationalUnit OUName] [-PrimarySmtpAddress
}SmtpAddress] [-ResetPasswordOnNextLogon <$true | $false>]
}[-SamAccountName PreWin2000Name] [-SendModerationNotifications <Never |
Internal | Always>] [-UsePreferMessageFormat <$true | $false>]

{AddtlParams2}
[-Alias ExchangeAlias] [-ArbitrationMailbox ModeratorMailbox]
[-DisplayName Name] [-DomainController FullyQualifiedName] [-FirstName
FirstName] [-Initials Initials] [-LastName LastName] [-ModeratedBy
Moderators] [-ModerationEnabled <$true | $false>] [-Organization OrgName]
[-OrganizationalUnit OUName] [-PrimarySmtpAddress SmtpAddress]
[-RemotePowerShellEnabled <$true:$false>] [-ResetPasswordOnNextLogon
 <$true | $false>] [-SamAccountName PreWin2000Name]
[-SendModerationNotifications <Never | Internal | Always>]


Usage
New-MailUser -Name "Frank Miller" -Alias "Frankm"
-OrganizationalUnit "cpandl.com/Technology"
-UserPrincipalName "[email protected]" -SamAccountName "Frankm"
-FirstName "Frank" -Initials "" -LastName "Miller"
-ResetPasswordOnNextLogon $false
-ExternalEmailAddress "SMTP:[email protected]"
 
Others
 
- Exchange Server 2010 : Managing User Accounts and Mail Features (part 2) - Finding Existing Mailboxes, Contacts, and Groups
- Exchange Server 2010 : Managing User Accounts and Mail Features (part 1) - Accessing and Using the Exchange Control Panel
- Exchange Server 2010 : Understanding Users and Contacts, Understanding the Basics of E-Mail Routing
- Windows 8 : Managing Content - Sharing Content
- Windows 8 : Managing Content - Jump Lists
- Windows 8 : Managing Content - Search
- Sharepoint 2013 : Monitoring and Analytics - Search Service Application Monitoring
- Sharepoint 2013 : Monitoring and Analytics - Timer Jobs in SharePoint 2013
- Microsoft Dynamic AX 2009 : The Database Layer - Database-Triggering Methods (part 2) - Changing the Default Behavior
- Microsoft Dynamic AX 2009 : The Database Layer - Database-Triggering Methods (part 1) - insert, update, and delete Methods
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us