Get All AIP encrypted files - SharePoint Online

Ravikaran Patel
One of the recent project merger and acquisition.  Technology - M365 tenant to Tenant migration Areas of consolidation 1. Mailboxes  2. SharePoint online data 3. OneDrive for Business data 4. Teams data migration 5. Security and Compliance Migration  Area of concern from security and compliance side was the encrypted files within EXO, SPO, Teams, ODB. Issue with encrypted data migration - end users will not be able to access the documents once the Source tenant is decommissioned.   Solution available -  Ask end users to unencrypt the data before migration  Alternet Solution - 1. Decrypt the files, mails using eDiscovery - This will give us output in PST format will is available for offline access, but the data in source will still be encrypted.  Decryption in eDiscovery - Microsoft Purview (compliance) | Microsoft Docs   2. Use Get-AIPfileLabel and Get-AIPFileLabel but in order to use this you must be aware of all the files paths.  Challenges -  1. We do not want end user intervention
5 comments

Recover a deleted mailbox in hybrid

Ravikaran Patel
Recover a deleted mailbox in hybrid

Action Plan:

-First of all, we can recover a mailbox only if it was removed within last 30 days
-So, if the user was synced with active Directory then please first check under "Deleted users" on Admin Dashboard in Office 365 portal
-Also, if you see the same user listed under Deleted users and if you also see the same user under "Active Users" showing as Synced with active Directory
-then that would mean that the original account is under Deleted Users and the duplicate one which is showing as Synced with Active Directory under Active users

-Whenever a user is removed from the On-Premise Active Directory or is removed from the OU which is getting synced to Office 365, the same user on Office 365 moves to Deleted users and becomes in cloud
- In such scenarios, we restore the user from the Deleted users and then we do a Hard Match i.e. we get the Object Guid of the On-Premise account and we set the Immutable ID as the Object ID of the On-Premise AD account which makes the user back as " Synced with Active Directory"
-Now First of all open Azure PowerShell and if you do not have it on your machine, then download it from the below mentioned Link:

-Download Microsoft Online Services Sign-In Assistant for IT Professionals RTW from the linkhttp://www.microsoft.com/en-us/download/details.aspx?id=41950
And download 32-bit or 64-bit as per your machine's specifications.

Then, ctrl+click on: Azure Active Directory Module for Windows PowerShell (64-bit version) if you have a 64-bit machine and Azure Active Directory Module for Windows PowerShell (32-bit version) if your machine is a 32-bit machine.

Then Save and Run.

-Once you have Azure PowerShell on your machine then, run it as Administrator:

and it enables us to make changes to the UPNs, passwords, Licenses, get the list of Deleted Users, Restore users etc.

-Then you would need to use Azure PowerShell and run:

Connect-MsolService

(gets you connected to Admin Dashboard)

Then,

$Session = New-PSSession -ConfigurationName Microsoft.exchange -ConnectionUri https://ps.outlook.com/powershell -Credential $Usercredential -Authentication Basic -Allowredirection

Import-PSSession $session

( The above two commands gets you connected to Exchange Admin Center and this way it enables you to run all the commands on the same PowerShell but it's possible only on Azure)

-Now, In order to restore users from Deleted Users in Office 365, use the below mentioned command:

Get-MsolUser -ReturnDeletedUsers | FL UserPrincipalName,ObjectID

(It gives you the list of the users which are listed under the Deleted users with their UserPrincipalName and ObjectID)

-Now in order to simply restore the user, we can use : Restore-MsolUser -ObjectId <GUID> -AutoReconcileProxyConflicts
In the box <GUID> type in the Object ID value which you would get after running Get-MsolUser -ReturnDeletedUsers | FL UserPrincipalName,ObjectID  

-If you want to restore the user with the new User Principal Name, then type: Restore-MsolUser -ObjectId <GUID> -AutoReconcileProxyConflicts -NewUserPrincipalName

Note: If you want to permanently delete the user from the Deleted users list, then it can be done only via PowerShell, please type: Remove-MsolUser -ObjectId <GUID> -RemoveFromRecycleBin -Force but do not use this command until and unless you are not sure of which one of the two accounts is original.

(We used the above mentioned command to remove the duplicate account which was mistakenly created and was showing as Synced with Active Directory)

-After removing the duplicate user, we wanted to have the correct account on Office 365 same as on your On-Premise Active Directory, so we then followed the below mentioned steps:

-Go to the On-Premise AD and open the command prompt as administrator and Run: ldifde -f export.txt -r "(Userprincipalname="Username of the user")" -l "objectGuid, userPrincipalName"

It gives us  the ObjectGuid value of the on-Premise account, copy the ObjectGuid value of the user from the exported file

-After that go to the office 365 PowerShell and set the immutable ID for the user on Office 365 to the same ObjectGuid value of the On-Premise user so as to do the Hard Match via PowerShell and use the below mentioned command:

Set-MsolUser -UserPrincipalName User@domain.com -ImmutableId "ObjectGUID value of the On-Premise user"

After that run the DirSync and it will change the user on Office 365 which was " in Cloud" to "Synced with Active Directory"


You'll have everything (user and it's mailbox) as it was earlier.

Comments

  1. navingoya24 August 2020 at 17:37

    Exchange Mailbox Recovery an easy to use software designed to recover mailboxes from corrupted or damaged MS exchange server database. Ths software does a complete scan of the corrupted Microsoft exchange server database and extracts all the mailboxes. After recovery, all folders from these mailboxes will be restored to a safe location. The log report will give entire information about the recovery process. See more at: https://softcart.wordpress.com/exchange-mailbox-recovery/

    ReplyDelete
  2. Unknown5 March 2022 at 14:29

    HOW TO INSTALL OFFICE 365 ON WINDOWS 10?
    A concise guide on How to install office 365 on Windows 10: Go to the official website of Office on the device you wish to have office 365 installed on>sign in to your account> click install office> select install on the web home page> on the prompt page, select save, run or set up depending on your browser> select yes when you see the prompt. You're set. Click close. Activate your office 365 by opening any of the packages on it. Follow the above-mentioned steps to have an in-depth knowledge about the topic instantly.

    Also Read -
    Outlook 365 crashing on Windows 10
    Outlook won't open in safe mode
    Outlook not receiving emails
    Best Netgear nighthawk router
    Netgear modem lights
    Why is my AT&T Account Locked?
    Why is my printer offline
    How to change printer settings on tablet?

    ReplyDelete

Post a Comment

Popular posts from this blog

Error - AttributeValueMustBeUnique in Azure AD connect sync

Ravikaran Patel
My customer had already created accounts in office 365 and managing them in Azure, however due to some changes in business they wanted to sync AD with Azure to sync Password and Manage Identity form AD. Solution - Deploy Azure AD connect on ADDC, and post that it will do a Soft Match. However there were error with some users, their identities did not sync and their status still reflected as Azure AD. Error -  Unable to update this object because the following attributes associated with this object have values that may already be associated with another object in your local directory services: [ProxyAddresses SMTP:user@domain.com;].  Correct or remove the duplicate values in your local directory.  Please refer to http://support.microsoft.com/kb/2647098 for more information on identifying objects with duplicate attribute values. Tracking Id: b8367c95-ae67-46e1-xxxx-xxxxxxxxxx ExtraErrorDetails: [{"Key":"ObjectId","Value":["cd088468-bb6a-4
Read more

Error - QuarantinedAttributeValueMustBeUnique

Ravikaran Patel
Case History. 1. Client already had users created in office 365 2. Client wanted to setup SSO for office 365 users Approach for requirement fullfilment   1. Deployed and configured Azure AD connect      95% users were synced and soft match was successfully done  5% users were getting error - QuarantinedAttributeValueMustBeUnique  (to view the sync issues -  https://aad.portal.azure.com/#blade/Microsoft_Azure_ADHybridHealth/AadHealthMenuBlade/SyncErros )  When we checked 2 users were found under Active users  1. one in Cloud (this was created earlier/ already existed ) with active licenses and Mailbox 2. one unlicensed synced with AD Solution - 1. Delete the unwanted user in Azure or AD as per this document.  https://blogs.msdn.microsoft.com/hkong/2017/03/23/how-to-fix-attributevaluemustbeunique-error-message-when-trying-to-sync-an-object-from-on-premises-active-directory-to-office-365/   but  If we delete the user in Azure we will loose
Read more

Add members to office 365 Security Group Using PowerShell and CSV

Ravikaran Patel
Step 1. Create a CSV file with a column “UserPrincipalName” and add all users under it who are to be added as a member of the group. Note – Sign In address need to be added under the userPrincipleName. Step 2.  Run The below command. $sub = Import-Csv C:\RAhul\sspruser.com.csv   csv   {enter the Path of same/Step1 CSV that was created by you with users details} $sub | Foreach {Get-Msoluser -UserPrincipalName $_.Userprincipalname | select Objectid } | Export-csv C:\RAhul\sspruser.com.csv This will convert the user’s identity to their unique guid details, and export it to the same CSV file. Step 3. Collect the guid ID of the security group. The below command will help with the object ID of the Group. Get-MsolGroup -all | where-object { $_.DisplayName -eq "SSPRSecurityGroupUsers"} | FL I have my object ID as below. ObjectId                  : XXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXX Step 4. Run the below command to Add members in the CS
Read more

Enforce MFA using CSV

Ravikaran Patel
Step 1. Connect-MsolService Step 2. Run the following commands. $auth = New-Object -TypeName Microsoft.Online.Administration.StrongAuthenticationRequirement $auth.RelyingParty = "*" Step 3. Choose the MFA State. You can choose between "Enabled" and "Enforced" $auth.State = "Enabled" Step 4: Choose the date . Any devices issued for a user before this date would require MFA setup. Normally, we would select the date of running the command. $auth.RememberDevicesNotIssuedBefore = (Get-Date) Step 5. Activate MFA. For one user Set-MsolUser -UserPrincipalName <UserPrincipalName> -StrongAuthenticationRequirements $auth Using CSV- Create a CSV with column UserPrincipalName and place users under this column. Import-Csv C:\RAhul\userMFA.csv | Get-MsolUser | Foreach{ Set-MsolUser -UserPrincipalName $_.UserPrincipalName -StrongAuthenticationRequirements $auth}
Read more

Analyze Office 365 Message headers

Ravikaran Patel
Image
How to get the message headers? From outlook. i. Double click on the mail “This will open the mail in new window” ii. Go to File option in the tool bar. iii. File > Info > Properties In the new pop up window copy all the contents available under “Internet Header” option. From OWA a. Open the mail b. Click on dropdown option available under “reply all” option c. Under the dropdown options select “Message Properties”. Once you have the message headers, open search “EXRCA” on Internet or open https://testconnectivity.microsoft.com/ Once you are the Microsoft remote connectivity site is opened select the option “Message Analyzer” Paste the copied/saved header under “Insert the message header you would like to analyze” and click on analyze. You will see the results in the below order. ·          Summary will give the overview of the mail like o    Subject o    From , To , …etc ·         
Read more