Chat now with support
Chat with Support

Identity Manager 9.2 - Administration Guide for Connecting to Exchange Online

About this guide Managing Exchange Online environments Synchronizing an Exchange Online environment
Setting up Exchange Online synchronization Customizing the synchronization configuration Running synchronization Tasks following synchronization Troubleshooting Ignoring data error in synchronization Pausing handling of target system specific processes (Offline mode)
Basic data for managing an Exchange Online environment Exchange Online organization configuration Exchange Online mailboxes Exchange Online mail users Exchange Online mail contacts Exchange Online mail-enabled distribution groups
Creating Exchange Online mail-enabled distribution groups Editing main data for Exchange Online mail-enabled distribution groups Main data for Exchange Online mail-enabled distribution groups Receive restrictions for Exchange Online mail-enabled distribution groups Customizing send permissions for Exchange Online mail-enabled distribution groups Specifying moderators for Exchange Online mail-enabled distribution groups Specifying Exchange Online mail-enabled distribution groups Assigning Exchange Online mail-enabled distribution groups to Exchange Online recipients Exchange Online mail-enabled distribution group inheritance based on categories Adding Exchange Online dynamic distribution groups to Exchange Online mail-enabled distribution groups Adding an Exchange Online dynamic distribution group to Exchange Online mail-enabled distribution groups Adding Exchange Online mail-enabled public folder to Exchange Online mail-enabled distribution groups Assigning extended properties to Exchange Online mail-enabled distribution groups Deleting Exchange Online mail-enabled distribution groups
Exchange Online Office 365 groups Exchange Online dynamic distribution groups Exchange Online mail-enabled public folders Reports about Exchange Online objects Configuration parameters for managing an Exchange Online environment Default project template for Exchange Online Editing Exchange Online system objects Exchange Online connector settings

Exchange Online mailboxes

Exchange Online mailboxes can send, receive, and save messages. Exchange Online recognizes several mailbox types. The mailbox types listed below are supported in One Identity Manager. Exchange Online mailboxes are loaded into One Identity Manager by synchronization.

Table 12: Supported mailbox types
Mailbox type Description

User mailbox

User mailboxes are assigned to Azure Active Directory user accounts in an Exchange Online organization.

You cannot create user mailboxes in One Identity Manager. User mailboxes are created by assigning the respective subscriptions to Azure Active Directory user accounts. By these means, user mailboxes are created that do not appear in One Identity Manager until after synchronization. The user mailboxes can be subsequently provisioned automatically in Exchange Online.

Equipment mailbox

Equipment mailboxes are resource mailboxes used for planning resources, such as computers or laptops.

You can create equipment mailboxes in One Identity Manager. When you create an equipment mailbox, an Azure Active Directory user account is also created and linked to the mailbox.

Room mailbox

Room mailboxes are resource mailboxes used for planning meeting locations.

You can room equipment mailboxes in One Identity Manager. When you create a room mailbox, an Azure Active Directory user account is also created and linked to the mailbox.

Shared mailbox

Shared mailboxes are mailboxes that are used by several users.

You can create shared mailboxes in One Identity Manager. When you create a shared mailbox, an Azure Active Directory user account is also created and linked to the mailbox.

Discovery mailbox

In Exchange Online, a discovery mailbox that is used as target mailbox for searches using eDiscovery, is created by default. You cannot edit discovery mailboxes in One Identity Manager.

Detailed information about this topic

Creating Exchange Online mailboxes

Exchange Online mailboxes are loaded into One Identity Manager by synchronization.

You cannot create user mailboxes in One Identity Manager. User mailboxes are created by assigning the respective subscriptions to Azure Active Directory user accounts. By these means, user mailboxes are created that do not appear in One Identity Manager until after synchronization. The user mailboxes can be subsequently provisioned automatically in Exchange Online.

You can create equipment mailboxes, room mailboxes, and shared mailboxes in One Identity Manager. When you create an equipment mailbox, a room mailbox, or a shared mailbox an Azure Active Directory user account is also created and linked to the mailbox.

To create a mailbox

  1. In the Manager, select the Azure Active Directory > Mailboxes category.

  2. Click in the result list.

  3. On the main data form, enter the main data of the mailbox.

  4. Save the changes.

Related topics

Editing main data of Exchange Online mailboxes

To edit a mailbox

  1. In the Manager, select the Azure Active Directory > Mailboxes category.

  2. Select the mailbox in the result list and run the Change main data task.

  3. Edit the mailbox's main data.

  4. Save the changes.
Related topics

General main data for Exchange Online mailboxes

Enter the following general main data.

Table 13: Mailbox general main data
Property Description

Identity

Identity using the mailbox.

No link to an identity required

Specifies whether the mailbox is intentionally not assigned an identity. The value is determined from the linked user account.

Not linked to an identity

Indicates why the No link to an identity required option is enabled for this mailbox. The value is determined from the linked user account. Possible values:

  • By administrator: The option was set manually by the administrator.

  • By attestation: The user account was attested.

  • By exclusion criterion: The user account is not associated with an identity due to an exclusion criterion. For example, the user account is included in the exclude list for automatic identity assignment (configuration parameter PersonExcludeList).

Azure Active Directory tenant

The Azure Active Directory tenant’s name.

Azure Active Directory user account

Azure Active Directory user account that uses this mailbox.

Name

Name of the mailbox.

Display name

Name as used in the address book.

Simple display

Simple display name for systems that cannot interpret all the characters of normal display names.

Phonetic display name

Display name in phonetic letters. It is used if the pronunciation and spelling of the name do not match. For example, the display name is used to sort recipients in the hierarchical address book if no sort order is given. They are sorted in ascending order from A to Z.

If no phonetic name is given, they are sorted by the display name.

Sort order

Specifies the order in which to display recipients in the hierarchical address book. The larger the value, the higher the ranking in the sort order.

If no order is given or more than one entries have the same sort order, recipients are sorted by their phonetic display name.

User ID

User ID for the user to log in to the mailbox.

Example:

<alias>@<domain.com>
<user>@yourorganization.onmicrosoft.com

Alias

Unique email alias for identifying the mailbox.

Proxy addresses

Email addresses for the mailbox. You can also add other mail connectors (for example, CCMail, MS) in addition to the standard address type (SMTP, X400).

Use the following syntax to set up other proxy addresses:

Address type: new email address

Recipient type (detail)

Type of mailbox. Available mailboxes are: User, Room, Equipment, Shared, and Discovery.

Do not display in address list

Specifies whether the mailbox is visible in address books. Set this option if you want to prevent the mailbox from being displayed in address books. This option applies to all address books.

Risk index (calculated)

Maximum risk index value of all assigned groups. The property is only visible if the QER | CalculateRiskIndex configuration parameter is set. For more information, see the One Identity Manager Risk Assessment Administration Guide.

Category

Categories the mailbox uses to inherit groups. Groups can be selectively inherited by mailboxes. To do this, the groups and mailboxes are divided into categories. Select one or more categories from the menu.

Groups can be inherited

Specifies whether the mailbox can inherit groups through the identity. If the option is set, the mailbox inherits groups through hierarchical roles, in which the identity is a member, or through IT Shop requests.

  • If you add an identity with a mailbox to a department, for example, and you have assigned groups to this department, the mailbox inherits these groups.

  • If an identity has requested group membership in the IT Shop and the request is granted approval, the identity's mailbox only inherits the group if the option is set.

Send and forward

Specifies whether to send and forward messages. Set this option to send messages to alternative recipients and mailbox owners.

Alternative recipient

Alternative recipient to which messages from this mailbox are forwarded. You can either enter an alternative recipient, a recipient group or a receive folder.

To specify an alternative recipient

  1. Click next to the field.

  2. Select the table under Table which maps the recipient.

  3. Select the recipient under Alternative recipient.

  4. Click OK.

Sender authentication required

Specifies whether authentication data is requested from senders. Set this option to prevent anonymous senders mailing to the mailbox.

Moderation enabled

Specifies whether the mailbox is moderated. Use the Assign moderators task to specify the moderators. Then enable the option.

Sending message

Specifies how senders are notified when they send messages to moderated mailbox. Permitted values are:

  • Do not notify: The sender is not notified.

  • Only notify senders in your exchange organization: Only internal senders receive a notification.

  • Notify all senders: Internal and external senders receive notification.

Message read status tracking enabled

Specifies whether this mailbox can show the read status of sent messages.

Related topics
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating