This segment demonstrates mailbox creation in Exchange 2016 for existing and new Active Directory users. The admin center and the Management Shell are used.
- [Instructor] With Active Directory prepared and an Exchange server installed, it's finally time to start creating mailboxes for our users. The location and details of a mailbox are fields for Active Directory users but until you enable a mailbox for them, those fields are blank. The most visual way to create a mailbox for an individual user is in the Exchange Admin Center or EAC. This web-based tool is a simple place to conduct many administrative tasks.
A self-signed certificate was created during installation, a certificate that you're going to want to replace. The process of creating and installing the new certificate is discussed in a course on Mailbox Databases which you'll probably want to review if you're installing an exchange server for production. This mailbox's page of the recipients tab is the default screen for the EAC and this is where all users with mailboxes will be displayed.
To create a mailbox for an existing Active Directory user I would simply click on the plus sign and select user mailbox. The easiest way to proceed from here is to browse Active Directory for the user account. I can browse out to Janice Jansdotter's user account and select it here, then all I have to do is click save and a mailbox has been created. If I wanted to specify some other parameters, I could scroll down, I can select more options and I could even specify which mailbox database I would like to house Miss Jansdotter's account.
I'm going to do that because a special mailbox was created specifically for executives, so I'm going to select the executives database and say OK. If I don't select a mailbox, Exchange will automatically distribute new mailboxes across all available databases. If you need more control over which database will house this mailbox, you can select it here to avoid the time-consuming process of migrating it later.
So, I can save that and Miss Jansdotter has an inbox but you can also create mailboxes from the management shell. The commandlet to do this is Enable-Mailbox. The only required parameter, very similar to what we just did in the Admin Center, is the identity of the user for whom you'd like to create a mailbox. And you do have the option of specifying the database here as well.
I want to point out an important part of this commandlet to create the new mailbox. You'll note that we use the commandlet Enable-Mailbox. That's the commandlet to create a mailbox for a user that already exists in Active Directory and let me scroll up and let's do this a different way. If we needed to create an Active Directory account and a mailbox, we could do that all at the same time using the New-Mailbox commandlet.
There are more required parameters because we need all of the Active Directory information to be created as well. The first thing we need to add is the UserPrincipalName and this will be the username and domain in the format of an email address and that's followed by the name of the inbox which will usually be the username before the at sign in the email address, also, the Active Directory location where this user account should be created.
I have an organizational unit named corporate where I would like all of these accounts to be placed. And finally, we need to specify the first name, last name and display name of this user account for Active Directory. FirstName Sara, LastName Grady and the DisplayName Sara Grady and any time you create a value with a space or other punctuation be sure to include it in double quotation marks.
And for those of you that are accustomed to creating your user accounts in Active Directory users and computers, you're used to seeing ResetPasswordOnNextLogon and that box being checked by default. Notice one thing that I don't have included in here. If you've created users before, then you'll notice that the password is not specified here and that's normally required when creating a new user account. And sure enough, I get a warning that the password's not included.
Now, I didn't use a password field because I can't just type the password in text in this command. It won't accept it. This is one way to go ahead and assign that password during the creation of a new mailbox. And it doesn't ask for a confirmation as long as the password you provide satisfies all of the complexity requirements. It will go ahead and create the box with that password. If it was typed incorrectly, you're going to have to change it elsewhere.
Now, this Active Directory user has been created and her Exchange mailbox has been created in a single command. You can change any of the properties of a mailbox at any time using the Set-Mailbox commandlet or by going back to the Administration Center, refreshing to see your accounts and then double clicking that user and that's all there is to creating mailbox for user accounts. Now, this simple configuration of exactly one mailbox for exactly one user may not cover all of your Exchange needs.
As we move forward, we're going to take a look at linking mailboxes and configuring other types of resources in an Exchange mailbox database.
- Planning and configuring Active Directory (AD)
- Creating and configuring mailboxes
- Delegating mailboxes
- Mailbox and mailbox folder permissions
- Mail-enabled users
- Send as versus Send on Behalf
- Using public folders
- Managing public folder permissions
- RBAC versus AD split permissions
- Configuring user assignment policies
- Protecting Exchange content
- Message signing and encryption
- Troubleshooting IRM failure