Grant online user delegation to on-premises account


Grant online user delegation to on-premises

Summary: Learn how to assign permissions for mailboxes and groups in Exchange 2016 so other users can open the mailbox, send mail from the mailbox, or send mail from the group.

The scenario that online exchange users in the hybrid environment were unable to have permission on the on-premises mailboxes such as (shared mailboxes, public folders, and users mailboxes).Therefore, there was a workaround

Now this is solved it can do not using the following

We will use two different commands

Full Access and Send As

Full Access: Allows the delegate to open the mailbox, and view, add and remove the contents of the mailbox. Does not allow the delegate to send messages from the mailbox.

as you can see below Full access only can be done using the ECP

press the + and the delegation for a user on the cloud


Automapping is by default

Also, allow the automapping

Use the Add-MailboxPermission cmdlet in the Exchange Management Shell to assign the Full Access permission with the -AutoMapping $false

PowerShell used

Send As

Allows the delegate to send messages as if they came directly from the mailbox or group. There is no indication that the message was sent by the delegate.
Does not allow the delegate to read the contents of the mailbox. However, this is done by full access


Note: this cmdlet is available only in on-premises Exchange.

Let’s start

PowerShell for full access if you wan

First, give the full access this is very easy and so straightforward

Add-MailboxPermission -Identity -User ADMIN -AccessRights FullAccess -AutoMapping $true

This gives the user ADMIN full permission on the CIC user also it auto maps the mailbox to his outlook

Second, we will give the send as

First, we need to get the identity using the following command

The Identity parameter requires you to use the Name or DistinguishedName (DN) value of the mailbox or group.

From <>


Get-Recipient -Identity CIC | Format-List Name,DistinguishedName

Now use the output of the name

Add-ADPermission -Identity “Internal Communication” -User admin -ExtendedRights “send As”

This gives the ADMIN send as permission on the CIC

Now he can read and send from this mailbox

You can run the following command to make sure

Get-MailboxPermission CIC| select identity, user, accessrights | FT

Windows Server 2016 Update settings


Windows Server 2016 Update settings


Hi, guys, I noticed that server 2016 doesn’t have options to schedule updates and restart but I found that it can be done by 3 scenarios I will share it with you all 

First, I found the following useful policy and website 

Configure Group Policy Settings for Automatic Updates
this link is very useful in describing every policy what it can do 


Go to CMD and run the 


Choose option 5 

Third method 

Registry keys

n Windows Server 2016 there are no GUI options available to change the update behavior.
In this blog I was outline the different ways to change the Windows Server 2016 Update settings.

Windows Server 2016 Update settings

Windows always looks at registry keys located in the following hive:

Typically there is a key named ‘AUOptions’ with a value in the range 2-5, and have the following meaning:

– 2 = Notify before download.
– 3 = Automatically download and notify of installation.
– 4 = Automatically download and schedule installation. Only valid if values exist for ScheduledInstallDay and ScheduledInstallTime.
– 5 = Automatic Updates is required and users can configure it.

But if there is a ‘NoAutoUpdate’ key with the value of ‘1’, no updates will be processed by Windows.


You can change the registry key with the help of Powershell directly:

Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU -Name AUOptions -Value 3


Windows Server 2016 Update settings









Why I could be marked as spam or phishing email?


Most probably because your message did not pass the DMARC Authentication
Continue reading

Kernel SharePoint Migrator


Product Review – Kernel SharePoint Migrator

Migrating to SharePoint Server or cloud platforms like SharePoint Online, Google Drive, or OneDrive is not an easy task with the manual options. When I tried to migrate from SharePoint 2007 to SharePoint 2013, I faced a lot of difficulties, and the results were also not as good as expected. Then I got to know about Kernel Migrator for SharePoint tool, and you guys wouldn’t believe how this tool cured all my headaches.

Kernel Migrator for SharePoint can help you solve all your migration problems. Some great features of this tool that I get to know about are:

  • SharePoint to SharePoint migration (to and fro between any version).
  • Exchange and Office 365 public folder migration to SharePoint.
  • Supports file system migration from local as well as remote servers.
  • Migrates lists, libraries, sites, and site collections.

To give a better insight into this tool, I am sharing my experience with this tool.

Installing the Tool

The installation process of this tool is very simple. It takes only a few seconds to install it. Let’s have a closer look at its installation process.

  1. Download Kernel Migrator for SharePoint and double-click the installer file. In the wizard, click “Next.”

2. In the next step, you’ll find the license agreement of the tool, read the agreement carefully, and then check “I accept the agreement,” and click “Next.”

Continue reading

Network trace without netmon


Network trace without netmon

netsh trace start capture=yes tracefile=D:\trace.etl

Continue reading

Users in a hybrid deployment can’t access a shared mailbox that was created in Exchange Online [Resolved]

Users in a hybrid deployment can’t access a shared mailbox that was created in Exchange Online [Resolved]

  • Date: 24/04/2018 10 minutes to read

    Applies to: Exchange Online, Exchange Server 2016, Enterprise Edition, Exchange Server 2016, Standard Edition, Exchange Server 2013 Enterprise Exchange


These issues can occur when the shared mailbox is created by using the Exchange Online management tools. In this situation, the on-premises Exchange environment has no object to reference for the shared mailbox. Therefore, all queries for that SMTP address fail.
Continue reading

Service Principal Names


Service Principal Names

As Microsoft descriptions

(A service principal name (SPN) is a unique identifier of a service instance.)

SO what is the meaning?

Continue reading