Powershell – Need PowerShell script to automatically hide disabled users from GAL in Exchange 2010

exchange-2010powershell

I'm looking for a PS script that will automatically hide all disabled users from the GAL. I ran the below command but it didn't actually hide anything so I'm thinking I must be missing something.

get-mailbox -ResultSize unlimited | where{$_.UserAccountControl -eq "AccountDisabled, NormalAccount" -and $_.RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -HiddenFromAddressListsEnabled $True

Thanks in advance.

Best Answer

Try this out (haven't run it myself):

Import-Module C:\Temp\Exchange.psm1
$filter = "(&(objectCategory=person)(objectClass=user)(userAccountControl:1.2.840.113556.1.4.803:=2))"
$users = ([adsiSearcher]$Filter).findall()
foreach($suser in $users)
    {
    if($suser.properties.item("showInAddressBook") -ne $null) {
        get-mailbox "$($suser.properties.item("sAMAccountName"))" | ? {$_.RecipientType -eq "UserMailbox"} | set-mailbox -HiddenFromAddressListsEnabled $True
    }
}

Notes:

Run this in the Powershell ISE, not the Exchange Management Shell.
You will need to change the "Import-Module" line at the top to point to the Exchange.psm1 file on your Exchange management machine for this to work.
I would try just printing the user accounts that you are going to hide first to make sure it is going to affect the users you think it is before you configure their mailboxes. (Put a # before the pipe to set-mailbox to comment that part out)

Related Solutions

How to Automatically Remove Disabled AD Users from GAL in Exchange 2010

No need to re-invent the wheel, found this elegant solution over at petri.co.il:

# http://www.petri.co.il/forums/showthread.php?p=109975 
# usage: Disable-User [accountname] [enable/disable]

function get-dn ($SAMName)    {
    $root = [ADSI]''
     $searcher = new-object System.DirectoryServices.DirectorySearcher($root)
    $searcher.filter = "(&(objectClass=user)(sAMAccountName= $SAMName))"
    $user = $searcher.findall()

    if ($user.count -gt 1)      {     
            $count = 0
                foreach($i in $user)            { 
            write-host $count ": " $i.path 
                    $count = $count + 1
                }

            $selection = Read-Host "Please select item: "
        return $user[$selection].path

          }      else      { 
          return $user[0].path
          }
}

$Name = $args[0]
$status = $args[1]
$path = get-dn $Name

if ($path -ne $null)    {

    "'" + $path + "'"  
    if ($status -match "enable")     {
        # Enable the account
        $account=[ADSI]$path
        $account.psbase.invokeset("AccountDisabled", "False")
        $account.setinfo()
        Set-Mailbox "$Name" -HiddenFromAddressListsEnabled $False
    }    else    {
        # Disable the account
        $account=[ADSI]$path
        $account.psbase.invokeset("AccountDisabled", "True")
        $account.setinfo()
        Set-Mailbox "$Name" -HiddenFromAddressListsEnabled $True
    }
}    else    {
    write-host "No user account found!" -foregroundcolor white -backgroundcolor red
}

Save it as Disable-User.ps1 and run .\Disable-User.ps1 SAMaccountname disable

Powershell – How to get a list of emails older than 2 years in Exchange Database, sorted by user, using Powershell

I was trying to solve this same problem and came up with the following.

You'll want to define $location as well as change the addyears(-1) to which ever number of years you want. In this example -1 is 1 year ago.

$Mailbox = Get-MailboxDatabase | Get-Mailbox

Foreach ($MBX in $Mailbox) {

$usermailbx = Get-Mailbox -identity $MBX | Get-MailboxStatistics
$userarchmailbx = Get-Mailbox -identity $MBX  | search-mailbox -SearchQuery "received<=$((get-date).addyears(-1).toString("yyyy-MM-ddTHH:mm:ssZ"))" -EstimateResultOnly
[pscustomobject]@{UserName=$usermailbx.displayname;TotalItemCount=$usermailbx.ItemCount;TotalItemSize=$usermailbx.totalitemsize.value;DeletedItemSize=$usermailbx.totaldeleteditemsize.value;ArchiveSize=$userarchmailbx.ResultItemsSize} | export-csv -append "$location\file.csv"
}

Best Answer

Related Solutions

How to Automatically Remove Disabled AD Users from GAL in Exchange 2010

Powershell – How to get a list of emails older than 2 years in Exchange Database, sorted by user, using Powershell

Related Topic