Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-8049: Unable to hide Office 365 address from global address list in Office 365 Administrative portal

30 December,16 at 10:59 PM

Applies to:

Centrify Identity Service, App Edition



Problem:

After federating a domain to Office 365 with Centrify O365 provisioning app, an administrator is no longer able to hide email addresses using the O365 administrator portal. The administrator receives the following error when attempting to use the “Hide from address list” checkbox:

 
Error: The operation on mailbox “<username>” failed because it's out of the current user's write scope. The action 'Set-Mailbox', 'HiddenFromAddressListsEnabled", can't be performed on the object ‘<username>’ because the object is being synchronized from your on-premises organization. This action should be performed on the object in your on-premises organization.

When viewing the object in Active Directory Attribute Editor or ADSI there is not a msExchHidefromAddressLists attribute available.



Cause:


Centrify provisioning can only provision attributes that exist in the Active Directory schema to Office 365. When an on-premise Exchange server is added, the schema is extended in Active directory to add the msExch attributes. If these attributes do not exist, then an administrator will need to extend the schema in Active Directory to include these. More information on doing this can be found here:

https://social.technet.microsoft.com/Forums/office/en-US/7698b2dc-85a6-48f3-99cf-dd81b77916eb/extending-ad-schema-for-exchange-for-office-365?forum=winserverDS​
(Url provided as courtesy and subject to change)



Workaround:

None



Resolution:

Extend the Active Directory schema with the Exchange attributes. The msExchHidefromAddressLists attribute will then be available in Active Directory. After modifying the attribute Centrify will start provisioning the attributes to Office 365.




For additional information not covered in this guide or troubleshooting assistance, please review Centrify Online Help or visit the Customer Support Portal at https://www.centrify.com/support/customer-support-portal/

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.