Dynamic distribution group based on security group membership

I wanted to create a dynamic distribution group in Exchange 2019 and wanted to include two kinds of users:

  1. Users where the Company field has a specific value
  2. Users that are members of a specific security group

The motivation was that our company has several sites. The Company states if a user is member of a site. And there are also users, that move between the sites. These users should be added using the security group.

To achieve this, I created the following recipient filter for the distribution group (indentation included for better readability):

                (Company -eq 'My company')
                (MemberOfGroup -eq 'CN=my-group,OU=groups,DC=mycompany,DC=local')

                    (RecipientType -eq 'UserMailbox')
                    (RecipientType -eq 'MailUser')

    -and (-not(Name -like 'SystemMailbox{*')) -and (-not(Name -like 'CAS_{*')) -and (-not(RecipientTypeDetailsValue -eq 'MailboxPlan')) -and (-not(RecipientTypeDetailsValue -eq 'DiscoveryMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'PublicFolderMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'ArbitrationMailbox'))-and (-not(RecipientTypeDetailsValue -eq 'AuditLogMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'AuxAuditLogMailbox')) -and (-not(RecipientTypeDetailsValue -eq 'SupervisoryReviewPolicyMailbox'))

The import part is (Company -eq 'My company') -or (MemberOfGroup -eq 'CN=my-group,OU=groups,DC=mycompany,DC=local'). The long part at the bottom is the default filter.
There are some important things:

  • You must specify the distinguished name for the group
  • The users must be direct member of the group, nested groups do not work.

But hey, it works :)

Published on 2022-03-16, 18:38

RMV ticket machine in Wiesbaden: Bad request

I like to take photos of machines where the user interface failed and you can see some details behind it.

This is the upper display of a RMV ticket machine at the Wiesbaden-Schierstein railway station on 2021-08-17:

Bad request on ticket machine

Normally, the upper display shows advertisements and upcoming train departures. We can see that these information are displayed using a website and a web browser running in full screen mode. By the way the fonts look, this should be some Linux system.

Published on 2022-03-12, 16:15

Windows Server 2022 in WSUS

We installed our first server with Windows Server 2022. We didn't find Server 2022 as a product in WSUS. After googling, I found out that Windows Server 2022 is listed as Microsoft Server operating system-21H2 in WSUS:

WSUS Products and Classifications for Windows Server 2022

Published on 2022-03-08, 11:47

"Mandatory" errors when mail-enabling user

I tried to mail-enable a user, but I got the following error messages:

Database is mandatory on UserMailbox
(In german: Database ist für UserMailbox verbindlich)


ExchangeGuid is mandatory on UserMailbox
(In german: ExchangeGuid ist für UserMailbox verbindlich)

Using ADSI Edit, I found out that the user's msExchHomeServerName attribute contained a value pointing to a server not existing anymore. After deleting the attribute's value, I was able to mail-enable the user.

Published on 2022-03-07, 18:46

PCDENotes works with uWSGI

After finding out it works with Gunicorn, I also tested PCDENotes with uWSGI. It works too :)

Published on 2022-02-22, 19:02