Procedure to Isolate the GAL via EMS (without EMC)
This guide explains how to isolate the Global Address List (GAL) for a specific Organizational Unit (OU) using only the Exchange Management Shell (EMS), without accessing the Exchange Management Console (EMC).
Customizable Parameters
- ou_name: name of the Organizational Unit (e.g., "OU1")
- gal_name: identifier for the GAL and associated objects
- attribute_name: AD attribute value to assign (e.g., "TEAM-B")
- domain_name: Active Directory domain name (e.g., "acs-hosting.local")
1. Create the new Global Address List (GAL)
New-GlobalAddressList "gal_name-GAL" -ConditionalCustomAttribute1 "attribute_name-CA" -IncludedRecipients "AllRecipients"
2. Create the Address List (AL)
New-AddressList -Name "gal_name-AL" -RecipientContainer "domain_name" -IncludedRecipients "AllRecipients" -ConditionalCustomAttribute1 "attribute_name-CA" -Container "\" -DisplayName "gal_name-AL"
3. Create the Room Address List
New-AddressList -Name "gal_name-ROOMS" -RecipientFilter {
(Alias -ne $null) -and (CustomAttribute1 -eq "attribute_name-CA") -and
(RecipientDisplayType -eq "ConferenceRoomMailbox") -or
(RecipientDisplayType -eq "SyncedConferenceRoomMailbox")
}
4. Create the Offline Address Book (OAB)
New-OfflineAddressBook -Name "gal_name-OAB" -AddressLists "gal_name-GAL"
5. Create the Address Book Policy (ABP)
New-AddressBookPolicy -Name "gal_name-ABP" -GlobalAddressList "\gal_name-GAL" -OfflineAddressBook "\gal_name-OAB" -RoomList "\gal_name-ROOMS" -AddressLists "\gal_name-AL"
6. Assign the custom attribute to users
Get-Mailbox -OrganizationalUnit "ou_name" | Set-Mailbox -CustomAttribute1 "attribute_name-CA"
7. Assign the Address Book Policy to users
Get-Mailbox -OrganizationalUnit "ou_name" | Set-Mailbox -AddressBookPolicy "gal_name-ABP"
Note
Ensure that all commands are executed with the required administrative privileges. Once completed, users within the specified OU will only be able to see the contacts defined in their isolated GAL, e
