Dynamic AD Security groups

By | 26th February 2018

Active Directory does not offer any build in Dynamic Security groups, whereas Exchange does offer Dynamic Distribution lists. So to solve this problem you could run a PowerShell script based on users in an OU. The script below will scan one or more OU’s and add each user account to the AD Security group you… Read More »

How to fix: Get-ADGroupMember : The size limit for this request was exceeded

By | 16th February 2018

Working in a larger Active Directory environment I occasionally got the error:

When trying to read all the members (recursively) of an AD Group. This was annoying since in the alternatives are limited especially when using the -recursive option. You could try with:


However these don’t have the recursive option. And… Read More »

Event ID 2002 – MSExchange Front End HTTP Proxy

By | 1st December 2017

When running your Exchange servers in a co-existence environment with an older version of Exchange you might notice some event 2002 warnings in your application log. Log Name:      Application Source:        MSExchange Front End HTTP Proxy Date:          1-12-2017 11:25:03 Event ID:      2002 Task Category: Core Level:         Warning Keywords:      Classic User:          N/A Computer: Description: [Eas] The number… Read More »

Azure AD connect sync error: FederatedDomainChangeError

By | 30th November 2017

When synchronizing identity data from your on-prem Active Directory environment to the Azure Active Directory environment using the Azure AD connect tool you might occasionally get an error. One example is the error: FederatedDomainChangeError Details This error typically occurs after you have changed the UserPrincipalName suffix of an user from one federated domain to another… Read More »

Enable DKIM in Office 365

By | 10th November 2017

Microsoft has made it very easy to use DKIM, basically you only need to create two CNAME DNS records and enable DKIM in Office 365. DKIM DNS records To enable DKIM in Office 365 you first need to create two dns CNAME records. The records should look like this:

Where .domain.com is the domain… Read More »

Status: No DKIM keys saved for this domain

By | 11th October 2017

When you want to enable DKIM in your Office 365 environment for a specific domain you might run into the problem that you can’t because the message is saying: “No DKIM keys saved for this domain” What you would expect to see is this, depending on the current state (enabled or disabled): To resolve this… Read More »