Import bulk contacts in Active Directory w/ powershell

Keith Hampshire 96 Reputation points
2022-04-23T17:51:27.74+00:00

I manage multiple domains in my organization. The domain and forest level are server 2016. We have a one-way Azure AD sync to Office 365.

I get the question about not seeing one another's email addresses in the Office 365 GAL. I know I can add them in manually one by one.

What I'm looking to do is take all of the "enabled" adusers from one domain and import them into other domain as a "contact". Is there a powershell script that would do that. Basically, I would run two separate scripts one to export all "enabled" adusers into a csv and the second script would convert the adusers into a contact in the of domain.

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,205 questions
Microsoft Exchange Online Management
Microsoft Exchange Online Management
Microsoft Exchange Online: A Microsoft email and calendaring hosted service.Management: The act or process of organizing, handling, directing or controlling something.
4,210 questions
Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
5,389 questions

3 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Keith Hampshire 96 Reputation points
    2022-04-23T19:01:29.53+00:00

    Yes, everything is separate. Three different AD forest. Three different O365 tenants. All of the domains are not in the same tenant. No, each Exchange organization does not create multiple GALs.

    Example: I manage domain01, domain02 and domain03. All are separate with their own AD forest and O365 tenant. Nothing federated (nothing touches so to speak).

  2. KyleXu-MSFT 26,211 Reputation points
    2022-04-25T06:28:53.663+00:00

    @Keith Hampshire

    I guess you need this script, it will export user mailbox from Exchange server: 

    Get-Mailbox -ResultSize unlimited |where{$_.RecipientTypeDetails -eq "UserMailbox"} | select Name,PrimarySmtpAddress | Export-Csv c:\temp\1.csv -NoTypeInformation

    Then, you could copy this CSV file to another Exchange server, then run command below to export those mailbox as mail contact: 

    Import-Csv c:\temp\1.csv | foreach {New-MailContact -Name $_.Name -ExternalEmailAddress $_.PrimarySmtpAddress}

    Please note, if there exists same username on those Exchange servers, you will get issue when creating mail contact. Because this username has been used.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments
  3. Limitless Technology 39,391 Reputation points
    2022-04-26T11:00:26.99+00:00

    Hi KeithHampshire-3198,

    Please use this PowerShell script to export all active AD users into a CSV:

    Get-ADObject -Filter 'objectClass -eq "contact"' -Properties *|select name,@{e={"$($_.memberof)"};l="Member Of"}|Export-csv Contacts.csv -NoTypeInformation

    You may then import contacts from your csv to AD easily with a powershell script. Here the example I've used to bulk import:

    Powershell
    Import-Module ActiveDirectory
    $Users = Import-CSV C:\path\to\users.csv
    foreach($User in $Users){
    $Params = @{
    SamAccountName = $User.SamAccountName
    Description = $User.Description
    Name = "$($User.GivenName) $($User.Surname)"
    DisplayName = "$($User.GivenName) $($User.Surname)"
    GivenName = $User.GivenName
    Surname = $User.Surname
    Department = $User.Department
    Company = $User.Company
    EmailAddress = $User.EmailAddress
    UserPrincipalName = "$($User.SamAccountName)@keyman .com"
    AccountPassword = (ConvertTo-SecureString $User.AccountPassword -AsPlainText -Force)
    Path = "OU=$($User.OU),DC=domain,DC=com"
    Enabled = $true
    ChangePasswordAtLogon = $true
    }
    New-ADUser @Params
    }

    -----------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept as answer--

    0 comments