Preventing Access to OMA and Active Sync Using Security Groups in AD

最新推荐文章于 2023-08-25 12:31:33 发布
原创 最新推荐文章于 2023-08-25 12:31:33 发布 · 509 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#security #access #integer #combinations #mobile #components

本文介绍了一种通过脚本批量管理Exchange服务器上用户移动设备访问设置的方法。利用ADSIedit工具,管理员可以针对不同需求设置特定数值来启用或禁用Outlook Mobile Access等功能。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

本文是一些摘要,在设置Push mail的时候用到

 

“You see, the enable or disable values for these components are part of a users Active Directory properties contained in a value entitled msExchOmaAdminWirelessEnable which has a data type of integer, and can be viewed and modified by using ADSI edit, which also means that you can generate scripts to manipulate the values.”

 

In essence you can use a combination of Integer values from 0 to 7 to enabled or disable the following Mobile features for an individual users account:

  • Outlook Mobile Access (OMA)
  • User Initiated Synchronisation
  • Up-To-Date Notifications

 

The following table is a run down on the combinations that can be used to gain the desired results

 

Integer ValueOMAUser Initiated SynchronisationUp-to-date Notification
0EnabledEnabledEnabled
1EnabledEnabledDisabled
2DisabledEnabledEnabled
3DisabledEnabledDisabled
4EnabledDisabledEnabled
5EnabledDisabledDisabled
6DisabledDisabledEnabled
7DisabledDisabledDisabled

 

So, from know this, I thought “What if you have a security group that contains all the people that you wish to disable these values for, and then have a script which reads the group periodically and changes the values in ad”.

 

The following is what I came up with:

 

strADPath = “cn=Deny_AS,cn=Users, “

Set objRootDSE = GetObject(“LDAP://RootDSE“)
strDomainContext = objRootDSE.Get(“DefaultNamingContext”)

Set objGroup = GetObject (“LDAP://”& strADPath & strDomainContext)
objGroup.getInfo

Members = objGroup.GetEx(“member”)

For Each strMember in Members
  
set ObjUser = getObject(“LDAP://” & stMember)     

obJUser.msExchOmaAdminWirelessEnable = “7″
ObjUser.setinfo
 
Next


 

 

 

The above script reads the group membership of DENY_AS which is located in the Users container in Active Directory (you would need to create this group if you wish to use the script) and then changes the mobile settings on the account to match the Integer value which is set on the line obJUser.msExchOmaAdminWirelessEnable = “7″ (In my example it will disable all Mobile settings).

 

This script can be scheduled to run on either you Exchange server, member server or Domain Controller perhaps at an interval of 10 or 20 minutes.

28、Security and Privacy in Knowledge Bases
ol7890123的博客
04-23 11
This blog post provides a comprehensive overview of the security and privacy challenges associated with managing knowledge bases. It explores key areas such as access control, encryption, anonymization techniques, and compliance with regulations like GDPR.
Introduction to Unit Testing in Java
AI天才研究院
07-28 1467
UNIT TESTING (UNIT测试),是在软件开发生命周期中不可或缺的一环。单元测试是一个模块化的测试工作,它的目标是验证某个函数、模块或者类的某个功能是否符合设计要求。它通过对代码中独立的测试用例进行运行和验证,发现错误并报告给相关人员。在单元测试中,会涉及到一些基本的概念,比如测试用例(Test Case),测试计划(Test Plan),测试环境(Test Environment)等,下面简单介绍一下这些概念和术语。1.测试用例(Test Case)
lvmetad is not active yet, using direct activation during sysinit
keithswift的博客
05-10 630
在开机系统EFI引导界面点击e进入GNU GRUP界面,修改security=console=tty0 init=/bin/bash 后按F10保存自动重启后自动进入单用户模式,在(initramfs)后按报错信息输入fsck -y /...(The root filesystem on /... requires a manual fsck中提示的磁盘路径)按回车对对应磁盘进行自动修复,修复完成后输入reboot+回车重启电脑,或许可以解决该问题。
Lvmetad is not active yet错误处理
weixin_34138377的博客
05-10 930
2019独角兽企业重金招聘Python工程师标准>>> ...
怎么用ssh开启远程服务器上的teamviewer (shit!弄这玩意花了我大半天时间)
一位初学者的博客
10-17 4896
必须记录一下在我装软件道路上的其中一个绊脚石,狗血经历,开学一个月了,装软件装的我怀疑人生,我的研究生生活难道要就此止步于装软件了?。。。想起刚开始装docker,接着又是SimpleElastix ,现在又卡在装Matlab ,每个都得花我好几天时间,我遇到的错误也是奇葩,各种找不到解决办法。。。。。。好了不抱怨了,要怪还是怪自己太菜鸡。 起因:在网上找了个很详细的在ubuntu16装Matla...
重启linux网络的时候出现 this device is not active的解决办法
weixin_30906425的博客
12-04 610
1.service NetworkManager stop 2.chkconfig NetworkManager off 3./et c/init.d/inetwork restart 三步搞定 转载于:https://www.cnblogs.com/china-sdd/p/6171977.html
guestfs-访问和修改虚拟机磁盘的强大工具
虚拟化云计算技术
02-27 4537
(文章来自作者维护的社区微信公众号【虚拟化云计算】) (目前有两个微信群《kvm虚拟化》和《openstack》,扫描二维码点击“云-交流”,进群交流提问) 简介 libguestfs 是Redhat开源的一组工具集,主要用来访问和修改虚拟机的磁盘。其功能非常强大,我们常用的查看虚拟机磁盘使用率、P2V、V2V、备份克隆虚拟机、格式化重置虚拟机磁盘大小等功能libguestfs都能提供。...
Preventing bit stuffing in CAN Using bit-stuffing distributions in CAN analysis
06-13
在"Preventing bit stuffing in CAN"这篇论文中,作者探讨了如何在CAN分析中有效地预防比特位填充错误。这些错误可能由于硬件设计缺陷、软件实现错误或者电磁干扰等因素导致。论文可能涉及了错误检测和恢复策略,如...
Sorry, looks like your network settings are preventing access to this feature.请详细解释
06-08
这个提示信息通常是由于您的网络设置或浏览器插件等原因导致无法访问某个特定的功能或页面。可能的原因包括: 1. 代理服务器或VPN的设置:如果您使用了代理服务器或VPN服务,可能会导致无法访问某个特定的功能或...
A Beginner’s Guide to Backpropagation in Neural Networks
AI天才研究院
08-25 235
作者:禅与计算机程序设计艺术Backpropagation is one of the most popular algorithms used for training neural networks. It belongs to a family of gradient-based optimization methods that use calculus to approximate the gradients of loss functions with respect to network pa
JAVA游戏框架
07-29
JAVA游戏框架
ZooKeeper和Curator相关经验总结
zollty的专栏
12-31 1743
一、关于ZooKeeper的watch用法,需要注意 详细说明如下: ZooKeeper Watches All of the read operations in ZooKeeper - getData(), getChildren(), and exists() - have the option of setting a watch as a side effect. He
ERROR: org.apache.hadoop.hbase.ipc.ServerNotRunningYetException: Server is not running yet
xuguokun1986的博客
04-19 2934
遇到该错误 1. 查看 Hbase master log, 发现2014-07-14 23:31:51,270 INFO [master:192.168.126.8:60000] util.FSUtils: Waiting for dfs to exit safe mode...退出 Hadoop 安全模式bin/hdfs dfsadmin -safemode leave成功解决。
Ubuntu 16.04 升级安装 protobuf 3.6+
shixinwenwu的专栏
04-25 8831
Ubuntu16.04系统自带的protobuf版本为 2.6.1 通过 locate 可以看到 /usr/lib/x86_64-linux-gnu/ 路径下面 会有 libprotobuf-lite.so.9 libprotobuf-lite.so.9.0.1 libprotobuf.so.9 libprotobuf.so.9.0.1等so文件,其中libprotobuf-li...
openfire asmack java.lang.IllegalStateException: Not connected to server.错误解决办法
of214的专栏
01-28 4223
openfire服务器端解决办法: “服务器设置”--“安全设置”---将“客户端安全联接”中由“非必须”,修改为“自定义”,另外把“旧的SSL方式”和“TLS方式”都设置为无效。 ConnectionConfiguration config = new ConnectionConfiguration(serverHost); config.setReconnectionAllowe
warning failed to connect to lvmetad
热门推荐
Ethan的专栏
08-26 1万+
如果报warning failed to connect to lvmetad,falling back to device scanning.错误。参照这篇文章,简单的方法是编辑/etc/lvm/lvm.conf这个文件,找到use_lvmetad = 1将1修改为0,保存,重新配置grub。...
【zookeeper】错误处理机制
MichaelJY1991的专栏
12-02 2995
为什么要了解Zookeeper的错误处理机制? Life would be so much easier if failures never happened. Of course, without failures,much of the need for ZooKeeper would also go away. To effectively use ZooKeeper it is im
LV Status NOT available问题解决
Jian Sun_的博客
07-26 3153
LV Status NOT available问题解决
基于Java医院药品管理系统论文
最新发布
08-12
基于Java医院药品管理系统论文
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值