AD FS Publishing and Policy Rules

I’ve been working with a customer who wanted to lock down access to O365 so users can access all the services from anywhere apart from browser based access, which can only be accessed from their corporate managed devices. Here’s a quick rundown of what we did… We used the basic setup of 2 AD FS…


Office 365 Migration Issues

Please find a list of migration issues and resolutions that I captured during my last customers migration:- Flood mitigation on Threat Management Gateway (TMG) –     Issue Resolution The operation couldn’t be performed because object couldn’t be found on ‘’ The object has not been replicated to Office 365, check Dirsync error logs,…


Office 365 and Autodiscover

**This blog is based on Exchange 2010 SP1 and not using the Hybrid configuration wizard e.g. SP2** I’ve had a few customers in the last few weeks ask me how autodiscover works for Office 365 so thought i’d write a post to try and help! (please see my other post for the namespaces required, as…


Office 365 – Non-Federated Identity, Password never expires

The Microsoft Online Services Module allows you manage your tenant directly and in some cases change settings you can’t change in GUI (note this can only be achieved if you’re managing accounts that have been created in the tenant e.g. not created using Dirsync/ADFS).  To access Remote PowerShell to the Service Portal you will need…


Enabling Retention Policies – Office 365

Steps Action The first step is understand the different types of retention policies you can apply and plan appropriately See for more details on retention policies. First create Retention Tags Create retention tags under the online tenant (for mailboxes that have been migrated to O365), under ‘Organisation configuration’ and ‘Mailbox’, the select the ‘Retention…


Performing a Multi Mailbox Search

Steps Action Login to the portal Sign into as the tenant administrator Add the user to the Discovery Management Role Select ‘Manage’ Under Exchange Online Select ‘Roles and Auditing’ and select the ‘Discovery management Role’ and details to add a user to the Discovery Management role group Add the relevant user NOTE: This user…


Enable a hosted (Personal) Archive for Office 365

Steps Action Configure the ‘Office 365 Tenant’ Organization Relationship Get-OrganizationRelationship "Office 365 Tenant" | fl Run – Set-OrganizationRelationship "Office 365 Tenant" -ArchiveAccessEnabled $true Start a remote PowerShell session Run $LiveCred = Get-Credential $Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri -Credential $LiveCred -Authentication Basic -AllowRedirection Import-PSSession $Session –AllowClobber Configure the ‘On Prem’ Organization Relationship Run -…


Enable Mailtips – Office 365

Steps Action Enable on-premise Mailtips Set-OrganizationRelationship -id "Office 365 Tenant" -MailTipsAccessEnabled $True -MailTipsAccessLevel all Enable Office 365 Mailtips Set-OrganizationRelationship -id "On-Prem" -MailTipsAccessEnabled $True -MailTipsAccessLevel all   Written by Daniel Kenyon-Smith


Enable Mailbox Moves–Office 365

Steps Actions Enable move mailboxes for the organization relationship Run Set-OrganizationRelationship -id "Office 365 Tenant" -MailboxMoveEnabled $True   Note: The MailboxMoveEnabled parameter specifies that the organization relationship is used to provide the credentials for moving mailboxes to Office 365.  If you don’t set this parameter you are required to provide admin credentials for the remote…


Enabling Calendar Sharing – Office 365

Steps Action Enable free/busy calendar sharing on-premise Run the following command Set-SharingPolicy ‘Default Sharing Policy’ –domains ‘*: CalendarSharingFreeBusySImple’, ‘, ContactsSharing’, ‘, ContactsSharing’, ‘, ContactsSharing’ Confirm the settings have been applied in the EMC, under Organisational configuration, Mailbox, Sharing Policies Enable free/busy calendar sharing for Office 365 Open a remote PowerShell session by running the following…