This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 76%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECB%3C/text%3E%3C/svg%3E)
If you use Exchange Online (ExO) for your organisations email system (and perhaps previously used on-prem Exchange Server), how accurate & current is a user’s email attribute that would be produced if you ran a get-aduser PowerShell command on the on-prem AD that is synched with an organization’s Azure AD/365 tenancy? For example, is this automatically populated based on some sort of integration with ExO? Or is it simply a manual entry when the users AD account was created, and therefore could technically be incorrect?
I am guessing the majority of our user accounts were setup in a previous technology landscape where accounts were created in on-prem classic AD, and at the time the organisation was using on-prem Exchange Server. I was never sure if AD somehow consumed the email address attribute that is reported in get-aduser directly from Exchange, or if this was manually entered and is actually totally independent of the user’s actual email address set in Exchange?
We basically need to get a regular report (quarterly basis) or all AD accounts, current account status (enabled/disabled/account expiry date), and an accurate email address for each account, to ensure they all match to information recorded in a 3rd party database that sends automated email reminders. If we can use get-aduser that would cover all bases, but I wasnt 100% sure how accurate/automated the email address attribute is nowadays if the email system has moved to the cloud.
Is there any update on this thread? If the issue has been resolved, please mark the helpful replies as answers, this will make answer searching in the forum easier and be beneficial to other community members as well. Thanks for your understanding.
In theory it should match, however an email address can be added to an AD object that isnt mail-enabled on-prem and it wont show up correctly in Exchange Online.
Personally, I would only use Exchange to verify which are accurately set as recipients and the types.
You could also run checks against both and find any that dont match as a cleanup too.