You can't sync the SystemMailbox or DiscoveryMailboxSearch accounts by using the Azure Active Directory Sync tool

Applies to: Cloud Services (Web roles/Worker roles)Microsoft IntuneAzure Backup More

PROBLEM


When you use the Microsoft Azure Active Directory Sync tool to sync the following user accounts, you receive directory synchronization errors: 
  • SystemMailbox{1f05a927-beed-480c-b962-da8d1d7e16a8}@<DomainNameName>
  • SystemMailbox{e0dc1c29-89c3-4034-b678-e6c29d823ed9}@<DomainName>
  • DiscoverySearchMailbox{D919BA05-46A6-415f-80AD-7E09334BB852}@<DomainNameName>

CAUSE


This issue occurs if the three user accounts that were created during Microsoft Exchange Server 2010 installation are missing the attribute data. In this case, the attribute data is used by the Azure Active Directory Sync tool to filter out these user accounts and stop them from being synced to the cloud.

RESOLUTION


To resolve this issue, use one of the following methods, as appropriate for your situation.

Method 1

On the domain controller or a computer on which the Active Directory Domain Services Administration Tools are installed, follow these steps:
  1. Open Active Directory Users and Computers.
  2. On the View menu, select Advanced Features.
  3. Select the Users container.
  4. Double-click each SystemMailbox user account, and then follow these steps for each account:
    1. Click Attribute Editor.
    2. Find the mailNickName attribute, and then populate the attribute by using the value that's included in the mail attribute.
    3. Click OK.
  5. Double-click each DiscoverySearchMailbox user account, and then follow these steps for each account:
    1. Click Attribute Editor.
    2. Find the mailNickName attribute, and then populate the attribute by using the value that is included in the mail attribute.
    3. Find the msExchRecipientTypeDetails attribute, and then set the value of the attribute to 536870912.
    4. Click OK.

Method 2

On the computer on which the Directory Sync tool is installed, follow these steps:
  1. Open an elevated command prompt.
  2. Open Windows PowerShell, type Import-Module DirSync, and then press Enter 
  3. After the Windows PowerShell session starts, run the following cmdlet:
    Start-OnlineCoexistenceSync 

MORE INFORMATION


Still need help? Go to Microsoft Community or the Azure Active Directory Forums website.