I have a somewhat interesting situation that I cannot seem to solve. In short, I have an intern that left the company in 2020, had his "Show in Address List" removed prior to us syncing with ADConnect, and has returned in 2021 (after we started syncing with ADConnect). I cannot update his user object to show in the GAL.
Now for the longer version.
I recently migrated our org to AWS with Managed AD. In the past, we were not utilizing ADConnect (it was ADSync back when we first looked at it and that was terrible), but given the improvements from ADSync to ADConnect, I opted to move forward. This is where the problem started. Amazon does not grant anyone Global Admin to their AWS Managed AD. Rather, they give you delegated administrative access via AWS administrative groups. The unfortunate part of this is you are not a proper admin over your domain, which includes the Schema Admin group. So mounting an Exchange iso and running Setup.exe /IAcceptExchangeServerLicenseTerms /PrepareSchema is not possible.
I have followed all necessary steps from Amazon to add the msExchHideFromAddressList attribute to the schema (AWS requires an LDIF to do schema updates), however the attribute is not available in the Attribute Editor on the user objects. I have verified I can see the attribute in ADSI, so I know it was properly added. I just cant update the value through AD.
Given this, I tried creating ADConnect Sync rules to map the msDS-cloudExtensionAttribute1 to msExchHideFromAddressList with the following settings:
FlowType: Expression
Target Attribute: msDS-cloudExtensionAttribute1
Source: IIF(IsPresent([msDS-cloudExtensionAttribute1]),IIF([msDS-cloudExtensionAttribute1]="ShowInGAL",True,False),NULL)
...but that doesnt seem to work. Ive jumped through every possible search I can think of, but Ive exhausted all the options that the Google box has provided. AWS has made many things much easier for me, but the few things I cant do are causing me major headaches.
At this point, it doesnt really matter to me how this gets solved, just so that it does. Please help, friends.