Hi,
I'm trying to setup OLsync and get an error when I perform the steps to connect Powershell 2 to Outlook Live. I am running to command:
$LiveCred = Get-Credential
And specifying my OLSync@<liveedudom.com> Windows Live ID. This account is created in the Live domain and I have successfully tested to login to the mailbox whithout problems.
I then ran:
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.outlook.com/powershell/ -Credential $LiveCred -Authentication Basic -AllowRedirection
And get the message that I am redirected to...... So that part seems to work
I then run:
Import-PSSession $Session
I doesn-t give me an error, but I can't see the progressbar that the documentation states that should appear.
I just get a list of exported commands: {Set-TextMessagingAccount, Set-MailUser, Set-MailboxCalendarFolder...
But when I try to run the command:
New-ManagementRoleAssignment -User OLSync@<tenant_domain> -Role GALSynchronizationManagement -Name "OLSync Svc Role"
I get an error stating that: "The term 'New-ManagementRoleAssigment' is not recognized as a cmdlet, script......."
What could be wrong? I'm running Win2003 x86 SP2 and I have verified that I have the correct version of Powershell an WinRM (WindowsServer2003-KB968930-x86-ENG.exe)
Regards
Patrik
I'm guessing that your OLSync@<tenant_domain> account is not the account you created your Outlook Live domain with. It's possible that your OLSync account does not have a role assigned to it that gives it the New-ManagementRoleAssignment cmdlet. By default, the only role that would give a user access to that cmdlet is the Role Managment role. If you connect, via RPS, to your domain as your tenant admin account and run the following command, you can see what roles are assigned to the OLSync account:
Get-ManagementRoleAssignment -RoleAssignee <OLSync account> | fl Name,Role
If you want to just see if the Role Management role is assigned to it, you can run the following command:
Get-ManagementRoleAssignment -RoleAssignee <OLSync account> | where{$_.Role -like "*Role*} | fl Name,Role
In order to see what cmdlets are available to a user that has that role assigned to it, you could run the following command:
Get-ManagementRoleEntry "Role Management\*"
You will see that more than just New-ManagementRoleAssignment would be assigned to a user that has the Role Management role assigned to them. So, if this is more than you want a user to have, you would need to create a customer role, based on the Role Management parent role, remove the cmdlets/parameters you don't want a user to have, and then assign that custom role to them.
Did this solve your problem?
Thanks for the help Kevyn,
That did the trick. Must say though that the instruction could be more clear....
It just says: Log in with a Outlook Live ID when I think it should say: Log in using a Outlook Live ID with a role assigned that gives access to the New-ManagementRoleAssignment (default this is given to your admin@<tenantdomain> account)
I'm glad that helped. I will be sure to pass your suggestion along to the people that write the content.