Adaxes

Powershell Script only runs for a single user in a OU

0 votes

I have a script that i am trying to run against all users in an OU, but the script will only run against 1 user then not run again for any other users in the OU. Any thoughts on why this would happen?

by (100 points)
0

Hello,

Could you send us or post here a screenshot of the Business Rule (Custom Command or Scheduled Task) that executes the script? Make sure the screenshot includes the Activity Scope. We need something like the following:

Also, provide the script you are using.

by (288k points)
moved by
0

Sorry for the delay in the reply. Here is the rule and the associated errors. I am trying to check for users that were create on prem and have finally synced to O365 then migrate the mailbox to office 365 for the user.

Capture of the Rule


Script Migrate Mailbox to Office 365

    Import-Module MsOnline
    Try
    {
        Connect-MsolService -Credential $Context.GetOffice365Credential()
    }
    Catch
    {

        $Context.LogMessage("Unable to connect to Office 365", "Error")
        return
    } 
    # Find a corresponding account in Office 365
    #$userPrincipalName = %userPrincipalName%    
    $Context.LogMessage("Looking for Account - %userPrincipalName%", "Information")
    $found = $false
    While($found -eq $False)
    {
        Try
            {
            $user = Get-MsolUser -UserPrincipalName %userPrincipalName% -ErrorAction SilentlyContinue
            }
        Catch
            {

            }
            If($user -ne $null)
            {            
                $Context.LogMessage("User account for %userPrincipalName% found in Office 365, attempting to move mailbox to Office 365", "Information")
                $office365DeliveryDomain = "<Delivery domain" # TODO: modify me

                # Connect to Exchange Online
                $session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri "https://outlook.office365.com/powershell-liveid/" `
                -Credential $Context.GetOffice365Credential() -Authentication Basic -AllowRedirection
                Import-PSSession $session -AllowClobber -DisableNameChecking 

                # Credentials of the local Exchange domain administrator
                $localAdminName = <Serviceaccount>

                $localAdminPassword = ConvertTo-SecureString -AsPlainText -Force -String <Password> 
                $localAdminCredentials = New-Object -TypeName System.Management.Automation.PSCredential($localAdminName, $localAdminPassword)

                try
                {
                    $result = New-MoveRequest -Identity %username% -BatchName %username%  -Remote -RemoteHostName "Remote host domain" -TargetDeliveryDomain $office365DeliveryDomain -RemoteCredential $localAdminCredentials  -ErrorAction Stop  

                }
                catch
                {
                    $Context.LogMessage("Unable to create Move Request for %username%", "Error")
                    $Context.LogMessage($_.Exception.Message, "Error")
                }

                    if ($result -ne $NULL)
                    {
                        $Context.LogMessage("Mailbox move request created successfully. Check Exchange logs for details." , "Information")
                    }
                    Remove-PSSession $Session
                    return # exit script
                    $found = $true    
            }
            Else
            {

             $Context.LogMessage("User has not synced with Office 365 yet, sleeping 10 minutes and checking again." , "Information")
            Start-Sleep -Seconds 600
            }

    }

User in AD has the extensionattribute3 set

Script reports nothing in the activity log

Error in event log from the adaxes service looking for the user online

O365 search for the same user finds the user without issue. (sorry couldn't add another screen shot.

by (100 points)
moved by
0

Hello,

I have a script that i am trying to run against all users in an OU, but the script will only run against 1 user then not run again for any other users in the OU.

According to the screenshot of the Scheduled Task, it should affect only users located in the Users OU, but not in its child OUs. Could you make sure there are other user accounts that match the conditions specified in the task?

Script Migrate Mailbox to Office 365

Could you specify, what exactly you need the script to do? Should it just move mailboxes to office 365?
Also, the timeout for script execution in Adaxes is 10 minutes. Your script will not work as it contains sleep for 600 seconds.

Script reports nothing in the activity log

It means that the error message you see in Adaxes Event log is not related to the script. Probably, it occurred for some other action.

by (288k points)
moved by
0

According to the screenshot of the Scheduled Task, it should affect only users located in the Users OU, but not in its child OUs. Could you make sure there are other user accounts that match the conditions specified in the task?

I have tried with multiple accounts in this OU but even at this point with one account, it is not being processed or the script is not completing successfully against the account.

Could you specify, what exactly you need the script to do? Should it just move mailboxes to office 365?
Also, the timeout for script execution in Adaxes is 10 minutes. Your script will not work as it contains sleep for 600 seconds.

I am looking for the script to poll and check for the extension attribute on the user the verify the user has been synced to Office 365. If so attempt to move the mailbox. If not wait till the next polling time and then run again. the sleep code i forgot to take out, you are correct it doesn't work (was orginially trying to testing and move based on user creation but found out about the 10 minute limit)

It means that the error message you see in Adaxes Event log is not related to the script. Probably, it occurred for some other action.

The error in the event log if specific to the running of the script (Migrate Mailbox to Office 365 is the name of the scheduled task) the kevin.test5 user is the account that is in the OU i am attempting to run the script against, but is only looking at that one server and not finding the account. I can run the script and that error is created in the log after each run

by (100 points)
moved by

1 Answer

0 votes
by (288k points)
selected by
Best answer

Hello,

We recommend the following approach:

The first set of actions and conditions in the Scheduled Task will initiate a move mailbox request and set a Boolean property to True for the user to mark that the request was created for them. We recommend using one of Adaxes custom Boolean attributes (e.g. CustomAttributeBoolean1).

The second set of actions and conditions in the Scheduled Task will check the Boolean property value. If the property is set to True, a PowerShell script will check the move mailbox request status and clear the Boolean property if the request is completed. If the request is not completed yet (e.g. queued or in progress) or failed the script will add a corresponding message to the Execution log. If this solution meets your needs, we will provide you with detailed instructions.

Regarding the error message you see in the event log. It looks like it is produced by another script in the Scheduled Task (Test or Check Office 365 for user mailbox). If you provide us with the scripts, we will check them for possible causes of the error.

Related questions

0 votes
1 answer
Assign user to a single security group among ones contained in a OU

Hello, We would like to implement a form / extend one where a user (eventually created before) is made member of a security group defining his/her role, and ... guarantee the membership to a single role? Apologize if the question seems convoluted. Thanks!

asked Jun 6, 2023 by IT Division (20 points)
0 votes
1 answer
Is there a script to move a user to their managers OU in a scheduled task?

seting up a scheduled task to move users to thier correct OU. For some we can do this based on employee type and direct to a specific OU. For most of our users we will have to script this to move to the manager's OU.

asked Apr 12, 2023 by mightycabal (1.0k points)
0 votes
1 answer
How can I exclude users in a specific OU from object selection for 'Delete User' ?

Hi there, I've created a Delete User feature in the Web Interface Configurator. I am trying to restrict object selection via a User Criteria. Need to exclude Service ... won't appear when selecting target user for the 'Delete User' feature. Thanks, David

asked Sep 19 by dshortall (80 points)
0 votes
1 answer
Is there a way to create a single report to look into multiple OU locations without using the drop downs?

I'm trying to schedule a report to look in a few specific OUs. Currently "Look in" location only allows for single instance or multiple drop downs. How do I schedule multiple OU locations without creating multiple reports?

asked Jul 2, 2020 by Al (20 points)
0 votes
1 answer
How to pass Adaxes variables (%username% as an example) into a powershell script for a business rule?

In a business rule, I'd like to pass Adaxes variables into a powershell script that I'll run. For example, pass %username% into the script so it can be used inside the script.

asked Sep 5 by P-Sysadmin (20 points)
3,542 questions
3,233 answers
8,227 comments
547,808 users