Adding ProxyAddresses in Active directory Distribution List using ADV2 Spoke.

Rohith Sureshk1 · yesterday

Hi

i am trying to add proxyAddresses when to Distribution List when creating them using powershell script and using them in the ADv2 spoke "Create group" action. but unfortunately, this fails with "Server rejected the client credentails" error. the group is getting created tho without email and proxyaddresses.

When i remove the steps to add proxyAddresses and add just email step, its working fine too. Please help me on what should i do correctly resolve this.

//after using New-ADGroup step and creating a DL, i am setting these paramters)

$proxyAddresses = @("smtp: $($groupName)@domain1.com" , "SMTP:$emailAddress")

Set-ADGroup -Identity $groupName -Add @{

mail = $emailAddress

proxyAddresses = $proxyAddresses }

(have tried -Replace also still same issue)

Thanks.

kaushal_snow · yesterday

@Rohith Sureshk1 ,

It looks like the issue arises because while the group creation step succeeds, the attempt to add proxyAddresses fails due to the AD account used by the ADv2 spoke lacking sufficient permissions to write that attribute, so you should verify that the service account has write access to the mail and proxyAddresses attributes in AD and test your Set ADGroup command manually under that same account to ensure it isn’t a credential or delegation problem....

If you found my response helpful, please mark it as ‘Accept as Solution’ and ‘Helpful’. This helps other community members find the right answer more easily and supports the community.

Thanks and Regards,
Kaushal Kumar Jha - ServiceNow Consultant - Lets connect on Linkedin: https://www.linkedin.com/in/kaushalkrjha/

Rohith Sureshk1 · yesterday

Hi, the AD service account has domain admin with logon as a batch job permission. so the access part should be a issue right? as it succeeds in every other actions