Unable to perform Exchange Online management actions using ADManager Plus
Issue description
ADManager Plus simplifies Exchange Online management by providing a centralized platform to perform essential administrative tasks. Administrators can create, modify, or delete mailboxes, configure mailbox features, set permissions, and apply retention policies for mailboxes. They can also manage mailbox visibility, forwarding rules, storage limits, audit settings, and more. These capabilities streamline routine operations, enhance security, and ensure compliance, all from a single interface.
However, users may sometimes encounter failures when performing these actions, such as errors during mailbox creation, modification, or configuration of settings like delegation, retention, or auditing. Such issues can disrupt administrative workflows and delay essential tasks, requiring prompt troubleshooting to restore full functionality.
Possible causes
Note: Steps 1 to 3 apply only to builds below 8010. It is recommended to upgrade to ADManager Plus build 8010 or later for improved Exchange Online connectivity and security compliance.Missing Exchange Online PowerShell module: The required module is not installed on the ADManager Plus server.
Service account lacks Exchange admin permissions: The account does not have the Exchange administrator permissions to manage Exchange Online.
Service account has Multi-Factor Authentication (MFA) enabled: MFA can block automated connections; an exclusion may be required.
API permissions in App Registration are insufficient: Missing permissions in Entra ID App Registration.
Connectivity issues: The server is unable to establish a connection with Exchange Online.
Firewall restrictions: Network restrictions are blocking access to necessary Microsoft endpoints.
Outdated or incorrect PowerShell version: Using an unsupported version of PowerShell may cause connection failures.
Prerequisites
Before proceeding, ensure:
The service account has an Exchange administrator.
PowerShell 5.1 or later is installed on the ADManager Plus server.
An active internet connection is available for connecting to Exchange Online.
Resolution
Follow these steps to troubleshoot and resolve the issue.
Step 1: Verify Microsoft 365 configuration
Log in to ADManager Plus as an admin.
Navigate to Directory/Application settings > Microsoft 365.
Verify the configuration page for any password or certificate error.
If the credentials are incorrect or expired, update them and save the changes.
Step 2: Ensure the Exchange Online PowerShell module is installed
To troubleshoot Exchange Online management issues, confirm that the Exchange Online PowerShell module is properly installed and configured by following these steps:
Check for module installation: Open PowerShell as administrator and run:
Get-Module ExchangeOnlineManagement -ListAvailable
Install the module if missing: If the module is not found, install it using:
Install-Module ExchangeOnlineManagement -Force
Confirm installation: Verify the installation by running:
Get-Module ExchangeOnlineManagement -ListAvailable
Restart ADManager Plus: Once verified, restart the ADManager Plus service to apply changes and retry the Exchange Online operation.
Step 3: Verify service account Exchange admin permissions
Sign in to the Microsoft 365 admin center.
Navigate to Roles > Admin roles.
Ensure the service account has the Exchange administrator role.
If missing, assign the required role and save the changes.
Step 4: Run Connect-ExchangeOnline to verify connectivity
Open PowerShell as an administrator and run:
Connect-ExchangeOnline -UserPrincipalName <serviceaccount@yourdomain.com>
If prompted, enter the credentials.
If the connection fails, verify the firewall rules and service availability.
Refer to the official Microsoft 365 firewall requirements and allow the listed domains.
Tips
Set up an Entra ID application with API permissions to bypass MFA issues.
Check the Microsoft 365 service health dashboard for outages before troubleshooting.
Allow necessary Microsoft endpoints in the firewall to prevent connectivity issues.
How to reach support
If the issue persists, contact our support team here.New to ADSelfService Plus?
Related Articles
How to integrate ADManager Plus with Jira Service Management Cloud to perform AD actions using the tickets raised in the Jira console
Overview By integrating ADManager Plus—a comprehensive IGA solution—with Jira Service Management Cloud, you'll be able to streamline and resolve identity management request tickets across multiple applications. For instance, upon ticket creation, ...Microsoft 365 license management using ADManager Plus
This article will explain how you can assign and revoke Microsoft 365 licenses using ADManager Plus. With ADManager Plus, you can: Assign Microsoft 365 licenses while creating users. Modify Microsoft 365 licenses for existing users. Remove Microsoft ...How to configure Microsoft 365 settings to perform Microsoft 365 management and reporting via ADManager Plus?
Objective: Configure Microsoft 365 settings to perform Microsoft 365 management and reporting via ADManager Plus. Solution: ADManager Plus empowers administrators to perform management and reporting across multiple platforms such as Active Directory ...Email server configuration failures using ADManager Plus
Issue description The mail server configuration in ADManager Plus is essential for enabling email-based notifications, alerts, and reports. It ensures that administrators and users receive timely updates about task completions, failures, approvals, ...Why are the Exchange attribute changes made using ADManager Plus not reflecting on the Exchange server?
Issue description After updating Exchange-related attributes using ADManager Plus, the changes are not reflecting in Exchange server immediately. This delay can cause inconsistencies and confusion when managing mailbox properties. Possible causes ...