Environment
Novell Identity Manager 3.5.1
Novell Identity Manager Driver - Active Directory
Novell Identity Manager Driver - Exchange
Situation
The Exchange mailbox is created fine during an add event but fails on a modify event with the following error.
<status level="error" type="exchange" text1="Post CDOEXM" event-id="LABW3K-NDS#20030703195433#1#1">Exchange 2007 Exception. code:0x000001c6 Error completing exchange 2007 command. ERROR: This task does not support recipients of this type. The specified recipient w64.com/workforce/active/Doug Weeps is of type MailUser. Please make sure that this recipient matches the required recipient type for this task.</status>
This happens when running the following powerscript command:
Enable-Mailbox -Identity 'CN=gpietsch,OU=blp,OU=aduser,DC=swp-ad,DC=local' -Database 'CN=Mailbox Database,CN=First Storage Group,CN=InformationStore,CN=OMEGA4,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=Stadtwerke-Potsdam,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=swp-ad,DC=local'
<status level="error" type="exchange" text1="Post CDOEXM" event-id="LABW3K-NDS#20030703195433#1#1">Exchange 2007 Exception. code:0x000001c6 Error completing exchange 2007 command. ERROR: This task does not support recipients of this type. The specified recipient w64.com/workforce/active/Doug Weeps is of type MailUser. Please make sure that this recipient matches the required recipient type for this task.</status>
This happens when running the following powerscript command:
Enable-Mailbox -Identity 'CN=gpietsch,OU=blp,OU=aduser,DC=swp-ad,DC=local' -Database 'CN=Mailbox Database,CN=First Storage Group,CN=InformationStore,CN=OMEGA4,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=Stadtwerke-Potsdam,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=swp-ad,DC=local'
Resolution
You will find that all of the failed users were created as "Mail Contacts". Once these objects are deleted, which Exchange barked were not properly created, you should be able to use the same Exchange Powershell command that the driver had sent previously and the user will be properly provisioned with an Exchange mailbox.
The incomplete "Mail Contact" object is being created on the modify event that attempts to provision an Exchange account. The issue is due to the setting of "mailNickname". This attribute should not be set this on an existing user. The two solutions are to modify the existing driver configuration or used the patched AD configuration.
Solution 1: In the subscriber command transformation edit the "ExchMailboxPolicy" policy or the "Command" policy depending on import version. In the "default Exchange assignment" rule. Disable the rule that's setting the "mailNickname".
Solution 2: Upgrade to IDM 3.6.1 and use the Active Directory Driver pre-configs from that version. The fixes are build into the new preconfiguration files.
The incomplete "Mail Contact" object is being created on the modify event that attempts to provision an Exchange account. The issue is due to the setting of "mailNickname". This attribute should not be set this on an existing user. The two solutions are to modify the existing driver configuration or used the patched AD configuration.
Solution 1: In the subscriber command transformation edit the "ExchMailboxPolicy" policy or the "Command" policy depending on import version. In the "default Exchange assignment" rule. Disable the rule that's setting the "mailNickname".
Solution 2: Upgrade to IDM 3.6.1 and use the Active Directory Driver pre-configs from that version. The fixes are build into the new preconfiguration files.