C.3 Provisioning Exchange 2010 Accounts

Exchange 2010 service is available with the latest Active Directory driver in Identity Manager 4.0.1.

This service is installed on the server that is running the Active Directory driver. If you decided to run the driver locally, the driver is installed on the Identity Manager server. If you decided to run the driver remotely, the driver is installed on the same server as the Remote Loader service.

The service listens on a default port of 8098. This is set when the service is installed. It is stored in the registry key HK EY_LOCAL_MACHINE\SOFTWARE\Novell\IDM_AD_EX_2010_SERVICE. The value can be edited if necessary. If you edit the registry key, both the service and the driver must be restarted.

The Active Directory driver creates, moves, and disables Exchange 2010 mailboxes. The cmdlets supported by the Active Directory driver to create, move, and disable mailboxes in Exchange 2010 are Enable-Mailbox, New-MoveRequest, and Disable-Mailbox. The cmdlets use the following parameters in the Active Directory driver:

NOTE:The cmdlets process sets these attributes: homeMDB, legacyExchangeDN, mail, mailNickname, mDBUseDefaults, msExchHomeServerName, msExchMailboxGuid, msExchMailboxSecurityDescriptor, msExchPoliciesIncluded, msExchRecipientDisplayType, msExchRecipientTypeDetails, msExchUserAccountControl, msExchVersion, proxyAddresses, and showInAddressBook.

For more functionality support, use the Scripting driver. For more information, see the Identity Manager 4.0.1 Driver for Scripting Implementation Guide.

To provisions the Exchange 2010 mailboxes, the following steps must be completed:

C.3.1 Meeting the Prerequisites

On the server where the driver will run, whether that is as a Remote Loader service or if the driver is installed locally, the following items must be installed:

  • Microsoft .NET Framework version 2.0 or above.

  • Exchange 2010 Management Tools for 64-bit platform.

C.3.2 Installing the Service

To install the service, you must use the .NET Framework InstallUtil.exe utility. The version folder is the current version of the .NET Framework that is installed.

The default location for a 64-bit server is C:\WINDOWS\Microsoft.Net\Framework64\version\InstallUtil.exe.

To use InstallUtil.exe:

  1. Open a .NET command prompt.

  2. Issue the command InstallUtil IDMEx2010Service.exe to register the service and create the correct registry entries.

    The default location of the service is C:\novell\remoteloader\IDMEx2010Service.exe.

  3. To start the service, select Start > Control Panel > Administrative Tools > Services.

  4. Right-click the service IDM_AD_Ex2010_Service, then select Start.

    The service runs as a system. A system usually does not have rights to manage mailboxes. Run the service as an account that has enough rights to manage mailboxes as mentioned in the TID 3608183.

To uninstall the service, issue the InstallUtil /u IDMEx2010Service.exe command.

C.3.3 Configuring the Driver

You need to modify the existing driver object to enable provisioning with Exchange 2010.

Modifying an Existing Driver in Designer

  1. Right-click the Active Directory driver in the Modeler, then select Properties.

  2. Select Driver Configuration > Driver Parameters > Edit XML.

  3. Search for the heading <header display-name=“Exchange Options”/>.

  4. Change the following lines:

    Old XML

    New XML

    <definition display-name="Exchange Management interface type (use-cdoexm/use-post-cdoexm)" name="exch-api-type" type="enum">

    <definition display-name="Exchange Management interface type (use-cdoexm/use-exch-2007/use-exch-2010)" name="exch-api-type" type="enum">

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-post-cdoexm">use-post-cdoexm</enum-choice>

    <enum-choice display-name="exch-2007">use-exch-2007</enum-choice>

    <enum-choice display-name="exch-2010">use-exch-2010</enum-choice>

  5. Click OK twice to save the changes.

Modifying an Existing Driver in iManager

  1. Select Identity Manager > Identity Manager Overview.

  2. Select the driver set where the Active Directory driver is stored, then click Search.

  3. Click the upper right corner of the Active Directory driver, then click Edit Properties.

    Edit properties icon on the Active Directory driver

  4. In the Driver Configuration tab, click Edit XML under Driver Parameters.

    Edit XML icon under Driver Parameters

  5. Click the Enable XML editing check box.

  6. Search for the heading <header display-name=“Exchange Options”/>.

  7. Change the following lines:

    Old XML

    New XML

    <definition display-name="Exchange Management interface type (use-cdoexm/use-post-cdoexm)" name="exch-api-type" type="enum">

    <definition display-name="Exchange Management interface type (use-cdoexm/use-exch-2007/use-exch-2010)" name="exch-api-type" type="enum">

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-cdoexm">use-cdoexm</enum-choice>

    <enum-choice display-name="use-post-cdoexm">use-post-cdoexm</enum-choice>

    <enum-choice display-name="exch-2007">use-exch-2007</enum-choice>

    <enum-choice display-name="exch-2010">use-exch-2010</enum-choice>

  8. Click OK twice to save the changes.