Hi All,
I never thought I would ever do anything this stupid, but I accidentally removed the Organization Management from Active Directory. Long story but all our roles were messed up. I cleared them from Exchange so it would be left with the default roles. Someone previous had messed with the default Organization Management role, renamed it and added roles to it that meant I couldn't edit it through ECP, so removed the roles that were preventing that through EMS. So I went into AD and removed the groups that were no longer in ECP, and in doing so I accidentally removed Organization Management.
I've restored the group in AD using ADRestore.NET, and run the following:
- Add-PsSnapin Microsoft*
- Install-CannedRBACRoles
- Install-CannedRBACRoleAssignments
But when closing and opening EMS I don't get a reload of the roles. It just opens as normal.
The role is missing in ECP still, but I did have an error stating that the AD group was missing before I restored the group. I seem to be able to do all the things I could as a member of the Organization Management role.
I've tried to re run Exchange 2013 setup /PrepareAD /IAcceptExchangeServerLicenseTerms to see if that would work but I'm getting errors. I'm on 2013 CU6, and tried running CU6 again, and the Exchange 2013 SP1. I'm thinking it might just be down to CU6 already being installed, and the other being a previous version.
Oh and this isn't a lab... It's production.
Has anybody been this stupid before, and maybe has a solution? I'm currently looking into RBAC Manager R2 to see if that might in a way associate the group back into ECP.
So to finish off, I deleted the group in AD, realised what I did. Checked ECP and got an error saying the group was missing. Restored the group using ADRestore.NET the group restored, although the members were missing and the description too. But the error in ECP went away, and tried a few things to get the role to show in ECP now that the group has been restored but nothing so far.
Any help would be greatly appreciated.