C.2 Provisioning Exchange Server 2010 Accounts

In order to provision Exchange Server 2010 mailboxes, the Active Directory driver uses Windows PowerShell in the form of a service. The IDM Powershell service can support multiple exchange servers in the environment. For more information, see Support for Multiple Exchange Server in the Environment

The Exchange Server 2010 service is installed on the server that is running the Active Directory driver. If you decided to run the driver locally, the driver is installed on the Identity Manager server. If you decided to run the driver remotely, the driver is installed on the same server as the Remote Loader service.

The service listens on a default port of 8098. This is set when the service is installed. It is stored in the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Novell\IDM_AD_EX_2010_SERVICE. The value can be edited if necessary. If you edit the registry key, both the service and the driver must be restarted.

The Active Directory driver creates, moves, and disables Exchange Server 2010 mailboxes. The cmdlets supported by the Active Directory driver to create, move, and disable mailboxes in Exchange Server 2010 are Enable-Mailbox, New-MoveRequest, and Disable-Mailbox. The cmdlets use the following parameters in the Active Directory driver:

  • Enable-Mailbox: -Identity, -Alias, -Database -DomainController

  • Disable-Mailbox: Identity, -DomainController, -Confirm

  • New-MoveRequest: -Identity, -TargetDatabase, -DomainController, -Confirm

For more functionality support, use the Scripting driver or the native PowerShell support feature. For more information on the Scripting driver, see the Identity Manager Driver for Scripting Implementation Guide. For more information on PowerShell support in Identity Manager, see Section D.0, Configuring PowerShell Support.

To provision Exchange Server 2010 mailboxes, you must complete the following steps:

C.2.1 Meeting the Prerequisites

On the server where the driver will run, whether that is as a Remote Loader service or if the driver is installed locally, the following items must be installed:

  • Microsoft .NET Framework version 2.0 or later

  • Exchange Server 2010 Management Tools for 64-bit platform

C.2.2 Installing the Service

To install the service, you must use the .NET Framework InstallUtil.exe utility. The version folder is the current version of the .NET Framework that is installed.

The default location for a 64-bit server is C:\WINDOWS\Microsoft.Net\Framework64\version\InstallUtil.exe.

To use InstallUtil.exe:

  1. Open command prompt.

  2. Issue the command InstallUtil IDMEx2010Service.exe to register the service and create the correct registry entries.

    The default location of the service is C:\novell\remoteloader\IDMEx2010Service.exe.

    NOTE:On Windows Server 2012, you must use IDMPowerShellService instead of IDMEx2010Service.

  3. To start the service, select Start > Control Panel > Administrative Tools > Services.

  4. Right-click the service IDM_AD_Ex2010_Service and select Start.

    The service runs as a system. A system usually does not have rights to manage mailboxes. Run the service as an account that has enough rights to manage mailboxes.

NOTE:To uninstall the service, open command prompt and issue the InstallUtil /u IDMEx2010Service.exe command.

C.2.3 Configuring the Driver

You need to modify the existing driver object to enable provisioning with Exchange Server 2010.

Modifying an Existing Driver in Designer

  1. Right-click the Active Directory driver in the Modeler, then select Properties.

  2. Select Driver Configuration > Driver Parameters > Edit XML.

  3. Search for the heading <header display-name="Exchange Options"/>.

  4. Change the following lines:

    Old XML

    New XML

    <definition display-name="Exchange Management interface type (use-cdoexm/use-post-cdoexm)" name="exch-api-type" type="enum">

    <definition display-name="Exchange Management interface type (use-cdoexm/use-exch-2007/use-exch-2010)" name="exch-api-type" type="enum">

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-post-cdoexm">use-post-cdoexm</enum-choice>

    <enum-choice display-name="exch-2007">use-exch-2007</enum-choice>

    <enum-choice display-name="exch-2010">use-exch-2010</enum-choice>

  5. Click OK twice to save the changes.

Modifying an Existing Driver in iManager

  1. In iManager, click Identity Manager Administration.

  2. Select Administration > Identity Manager Overview.

  3. Select the driver set where the Active Directory driver is stored.

  4. Click the upper right corner of the Active Directory driver, then click Edit properties.

    Edit properties icon on the Active Directory driver
  5. In the Driver Configuration tab, click Edit XML under Driver Parameters.

  6. Click the Enable XML editing check box.

  7. Search for the heading <header display-name="Exchange Options"/>.

  8. Change the following lines:

    Old XML

    New XML

    <definition display-name="Exchange Management interface type (use-cdoexm/use-post-cdoexm)" name="exch-api-type" type="enum">

    <definition display-name="Exchange Management interface type (use-cdoexm/use-exch-2007/use-exch-2010)" name="exch-api-type" type="enum">

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-post-cdoexm">use-post-cdoexm</enum-choice>

    <enum-choice display-name="exch-2007">use-exch-2007</enum-choice>

    <enum-choice display-name="exch-2010">use-exch-2010</enum-choice>

  9. Click OK twice to save the changes.

  10. Click Close.

C.2.4 Configuring the Driver to Support Exchange Server 2010 Database Load Balancing

The Active Directory driver supports the database load balancing feature included in Exchange Server 2010. You can use the Active Directory driver to auto-provision Exchange Server 2010 accounts and enable Exchange to load balance accounts across the databases in your Exchange environment.

To enable load balancing, use either Designer or iManager to set the value of the HomeMDB parameter to defer.

For more information about automatic account provisioning in Exchange Server 2010, see Understanding Automatic Mailbox Distribution.

Configuring an Existing Driver in Designer

  1. Right-click the Active Directory driver in the Modeler, then select Driver > Properties.

  2. Select GCVs.

  3. Select the Entitlements tab.

  4. Click Exchange Mailbox Provisioning and select Use Policy.

  5. Set the value of the Exchange HomeMDB parameter to defer.

  6. Click OK.

Configuring an Existing Driver in iManager

  1. In iManager, click Identity Manager Administration.

  2. Select Administration > Identity Manager Overview.

  3. Select the driver set where the Active Directory driver is stored.

  4. Click the upper right corner of the Active Directory driver, then click Edit properties.

    Edit properties icon on the Active Directory driver
  5. In the Global Config Values tab, click Exchange Mailbox Provisioning and select Use Policy.

  6. Set the value of the Exchange HomeMDB parameter to defer.

  7. Click OK.

  8. Click Close.