Reputation: 311
Enable Mailbox Auditing
When I run this command I'm getting an error on enabling a few accounts for auditing.
Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox" -or RecipientTypeDetails -eq "SharedMailbox" -or RecipientTypeDetails -eq "RoomMailbox" -or RecipientTypeDetails -eq "DiscoveryMailbox"} |
Set-Mailbox -AuditEnabled $true -AuditLogAgeLimit 180 -AuditAdmin Update, MoveToDeletedItems, SoftDelete, HardDelete, SendAs, SendOnBehalf, Create, UpdateFolderPermission -AuditDelegate Update, SoftDelete, HardDelete, SendAs, Create, Update FolderPermissions, MoveToDeletedItems, SendOnBehalf -AuditOwner UpdateFolderPermission, MailboxLogin, Create, SoftDelete , HardDelete, Update, MoveToDeletedItems
Then I get this error here,
The operation couldn't be performed because 'Employee Name' matches multiple entries. + CategoryInfo : NotSpecified: (:) [Set-Mailbox], ManagementObjectAmbiguousException + FullyQualifiedErrorId : [Server=removed,RequestId=removed,TimeStamp=8/16/2018 8:54:51 PM] [FailureCategory=Cmdlet-ManagementObjectAmbiguousException] B88862F7,Microsoft.Exchange.Management.RecipientTasks.SetMailbox + PSComputerName : outlook.office365.com
Then I'm running this command to see who is enabled and who isn't
Get-Mailbox -ResultSize Unlimited |
Select Name, AuditEnabled, AuditLogAgeLimit |
Out-Gridview
Which pops up a GUI and show's me a few Employee's that are duplicate. This is because we have two different domain names with different email boxes. Example: [email protected] and [email protected]. How do I enable those duplicate accounts in PowerShell?
Upvotes: 0
Views: 929
Answers (1)
Reputation: 13503
I find it funny that the identity parameter passed through the pipeline is based on the Name, even though it doesn't uniquely identify the object :) (an Identity should be unique by definition!!). Anyhow, what we need to do is to change the Identity from the name to something more globally unique like the GUID. We can do this by adding in a step in the pipeline to change the Identity:
Get-Mailbox...| Select -Property @{Name="Identity";Expression={$_.GUID.ToString()}} | Set-Mailbox...
What I am doing is to use an expression inside a Select statement to convert the GUID in to a string, and pass it on through the pipeline as the Identity. The Set-Mailbox will take the GUID as an Identity, and will update the right mailbox.
So your code becomes (broken up for clarity):
Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox" -or RecipientTypeDetails -eq "SharedMailbox" -or RecipientTypeDetails -eq "RoomMailbox" -or RecipientTypeDetails -eq "DiscoveryMailbox"}`
| Select -Property @{Name="Identity";Expression={$_.GUID.ToString()}} `
| Set-Mailbox -AuditEnabled $true -AuditLogAgeLimit 180 -AuditAdmin Update, MoveToDeletedItems, SoftDelete, HardDelete, SendAs, SendOnBehalf, Create, UpdateFolderPermissions -AuditDelegate Update, SoftDelete, HardDelete, SendAs, Create, UpdateFolderPermissions, MoveToDeletedItems, SendOnBehalf -AuditOwner UpdateFolderPermissions, MailboxLogin, Create, SoftDelete , HardDelete, Update, MoveToDeletedItems
Upvotes: 3
Related Questions
- Gathering Outlook shared mailbox permissions with Powershell
- Connecting Exchange Online with Powershell without basic authentication
- Using powershell to process emails in an o365 mailbox when connecting with application id and secret
- Search-Mailbox cmdlet availability with app-only authentication in Exchange Online
- Adding Mailbox with Powershell through O365
- Get-mailboxstatistics from all Office 365 Mailboxes
- office 365 Powershell
- Connect Office 365 Exchange Online through Powershell
- Powershell Exchange Module remote mailbox issue
- Auditing Exchange 2007 Mailbox Full Access Permissions with Powershell