none
Hide from GAL, but remain active mailbox RRS feed

  • Question

  • Exchange 2007 SP3

    Is it possible to hide a mailbox from the GAL, but still have it be an active mailbox that a user can access.

    Problem: A user left the company but has an agreement with management that his mailbox will remain active while he looks for a new job (i guess an "@CompanyName.com" address looks better on a resume than a gmail or yahoo address.)  Anyway, management doesn't want that user to show up in the GAL.

    My initial response was to change the display name to the users initials.  It doesn't really hide him from the GAL, but it doesn't display his name as it did when he was still working here.  The problem is that his initials now show up in the From field when he emails somebody.  He want's it to be his full name instead.  If i hide it outright then he can't login at all ('mailbox does not exist.')

    Thanks in advance!

    Tuesday, June 26, 2012 7:02 PM

Answers

  • On Wed, 27 Jun 2012 12:35:11 +0000, SuperUzer wrote:
     
    >1. OWA Uses GAL or OAB, which is synchronized in a while (depends on policy)
     
    OWA doesn't (and cannot) use the OAB.
     
    >2. If you place "V" in a hide from Exchange address list it does not affect log on in any way
     
    That's not true. If the name is hidden from the GAL then it isn't
    possible for the client to locate the name, and that has to happen for
    the legacyExchangeDN to be known.
     
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP
     

    --- Rich Matheisen MCSE+I, Exchange MVP
    • Marked as answer by blinkyjesus Thursday, June 28, 2012 1:09 PM
    Thursday, June 28, 2012 3:14 AM

All replies

  • Ok, i *think* i might have an answer, but not sure.  I can create a new Address List and let his mailbox live there.  Everyone uses the GAL, so they'd only see it if they changed their default address lists manually.  Problem is that i'm not sure how to remove him from the GAL and add him to the new one.  It looks like the only way to do that is through recipient filters.  Is there a mechanism for adding mailboxes to a particular address manually, like picking it out of a list or something?
    Tuesday, June 26, 2012 7:54 PM
  • I believe what i just did should take care of it, unless someone sees a problem with my solution...

    1. Created a new address list called "External"

    2. Recipient type = UserMailbox, ConditionalDepartment = External

    3. Changed the users department attribute to: External

    4. Went into ADSIEDIT and removed user from all address lists (including GAL) except External.

    Since he's the only one in the company with "External" listed as their department, he's the only one that shows up in the External address list.

    It's not perfect.  A user can still go into Outlook and change their address list from GAL to External and see his name, but they'd have to do that specifically.  He's not in the GAL anymore but his address is still there to be used.

    I'd still appreciate any feedback.  This might not be the best solution, but it seems to be working for now.

    Tuesday, June 26, 2012 9:02 PM
  • On Tue, 26 Jun 2012 19:02:46 +0000, blinkyjesus wrote:
     
    >
    >
    >Exchange 2007 SP3
    >
    >Is it possible to hide a mailbox from the GAL, but still have it be an active mailbox that a user can access.
    >
    >Problem: A user left the company but has an agreement with management that his mailbox will remain active while he looks for a new job (i guess an "@CompanyName.com" address looks better on a resume than a gmail or yahoo address.) Anyway, management doesn't want that user to show up in the GAL.
    >
    >My initial response was to change the display name to the users initials. It doesn't really hide him from the GAL, but it doesn't display his name as it did when he was still working here. The problem is that his initials now show up in the From field when he emails somebody. He want's it to be his full name instead. If i hide it outright then he can't login at all ('mailbox does not exist.')
     
    What e-mail client is that person using?
     
    If it's Outlook the person only has to visible in the GAL long enough
    to create the profile. Once the legacyExchangeDN is known and stored
    in the profile I don't think the mailbox has to be visible in the GAL.
     
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP
     

    --- Rich Matheisen MCSE+I, Exchange MVP
    Wednesday, June 27, 2012 2:16 AM
  • Why just not to hide it from lsit?

    Wednesday, June 27, 2012 5:49 AM
  • It's OWA.  Is that a problem?
    Wednesday, June 27, 2012 12:31 PM
  • Thanks, but as i mentioned if i hide the user account from the GAL then they're unable to login to the mailbox.
    Wednesday, June 27, 2012 12:32 PM
  • 1. OWA Uses GAL or OAB, which is synchronized in a while (depends on policy)

    2. If you place "V" in a hide from Exchange address list it does not affect log on in any way


    --------------------------------------------------------- If you find this post helpful, spend a second to vote up. Smoking~~

    • Marked as answer by blinkyjesus Wednesday, June 27, 2012 2:41 PM
    • Unmarked as answer by blinkyjesus Thursday, June 28, 2012 1:08 PM
    Wednesday, June 27, 2012 12:35 PM
  • On Wed, 27 Jun 2012 12:31:54 +0000, blinkyjesus wrote:
     
    >It's OWA. Is that a problem?
     
    Yes.
     
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP
     

    --- Rich Matheisen MCSE+I, Exchange MVP
    Thursday, June 28, 2012 3:10 AM
  • On Wed, 27 Jun 2012 12:35:11 +0000, SuperUzer wrote:
     
    >1. OWA Uses GAL or OAB, which is synchronized in a while (depends on policy)
     
    OWA doesn't (and cannot) use the OAB.
     
    >2. If you place "V" in a hide from Exchange address list it does not affect log on in any way
     
    That's not true. If the name is hidden from the GAL then it isn't
    possible for the client to locate the name, and that has to happen for
    the legacyExchangeDN to be known.
     
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP
     

    --- Rich Matheisen MCSE+I, Exchange MVP
    • Marked as answer by blinkyjesus Thursday, June 28, 2012 1:09 PM
    Thursday, June 28, 2012 3:14 AM
  • On Wed, 27 Jun 2012 12:35:11 +0000, SuperUzer wrote:
    >1. OWA Uses GAL or OAB, which is synchronized in a while (depends on policy)
    OWA doesn't (and cannot) use the OAB.
    >2. If you place "V" in a hide from Exchange address list it does not affect log on in any way
    That's not true. If the name is hidden from the GAL then it isn't
    possible for the client to locate the name, and that has to happen for
    the legacyExchangeDN to be known.
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP

    --- Rich Matheisen MCSE+I, Exchange MVP

    Rich:

    i don't know about LegacyExchangeDN, but OWA for example will work very fine->



    If you find this post helpful, spend a second to vote up. Smoking~~


    • Edited by SuperUzer Thursday, June 28, 2012 5:21 AM
    Thursday, June 28, 2012 5:20 AM
  • On Thu, 28 Jun 2012 05:20:51 +0000, SuperUzer wrote:
     
    >On Wed, 27 Jun 2012 12:35:11 +0000, SuperUzer wrote: >1. OWA Uses GAL or OAB, which is synchronized in a while (depends on policy) OWA doesn't (and cannot) use the OAB. >2. If you place "V" in a hide from Exchange address list it does not affect log on in any way That's not true. If the name is hidden from the GAL then it isn't possible for the client to locate the name, and that has to happen for the legacyExchangeDN to be known. --- Rich Matheisen MCSE+I, Exchange MVP
    >
    >
    >--- Rich Matheisen MCSE+I, Exchange MVP
    >
    >Rich:
    >
    >i don't know about LegacyExchangeDN, but OWA for example will work very fine->
     
    Not with the OAB!
     
    ---
    Rich Matheisen
    MCSE+I, Exchange MVP
     

    --- Rich Matheisen MCSE+I, Exchange MVP
    Thursday, June 28, 2012 9:44 PM
  • This will work - just have to tell the server what account you are logging into.   instead of your normal webmail link ex:  https://email.microsoft.com

    use this instead:  https://email.microsoft.com/owa/joe.user@microsoft.com

    Tuesday, September 6, 2016 7:52 PM