Sunday, 29 March 2015

Distribution and Dynamic Distribution Groups in Exchange 2013

We can create a distribution group of direct relation to an OU:
New-DistributionGroup -Name "Distribution Group 1" -OrganizationalUnit "" -SamAccountName "Managers" -Type "Security" -

PrimarySmtpAddress <email-address>

Or we can manually add our own selection:
New-DistributionGroup -Name "Distribution Group 2" -IgnoreNamingPolicy -PrimarySmtpAddress <email-address>

We can then add additional users:
Add-DistributionGroupMember "Distribution Group 2" -Member <Identity> -BypassSecurityGroupManagerCheck

or remove a user:

Remove-DistributionGroupMember "Distribution Group 2" -Member <Identity> -BypassSecurityGroupManagerCheck

By default a distribution group will not be accessible to senders outside of your organization (i.e. internet users) and hence we can enable this if needed:

Set-DistributionGroup "Distribution Group 2" -RequireSenderAuthenticationEnabled $False

We can assign a specific user management permissions on the group:
Set-DistributionGroup -Identity "Distribution Group 2" –ManagedBy <Identity> -BypassSecurityGroupManagerCheck

Dynamic Distribution Groups are groups that when accessed query active directory mail-enabled objects and builds it's membership from the

results of the query - they are dynamically updated every time they are used. Variables such as ConditionalCompany, ConditionalDepartment and so on can be used to build the query.

In environments where there are multiple mailbox servers, a specific mailbox will be delgated the task of receiving the request to service

the distribution group mailbox - this server will then resolve and route to all mailoxes within the distribution group accordingly.

We can identify which expansion server a distribution group uses - although not by default Exchange does not use one, nor require one to function:
Get-DistributionGroup "Distribution Group 2" | FL


Post a Comment