More on email blocking by group membership

My post the other day on how to Block email between groups of users in Outlook Live got some attention from customers… I was asked to expand a little.  Questions I was getting had to do with how this might work in larger districts with multiple schools, whether or not Dynamic Distribution Groups could be used instead of standard groups, and so on…

Here is a setup I suggested… the transport rules allow you to go as far you like really…

  • While provisioning students, tag them as Elementary School, Middle School or High School students – in this example, I used the “Department” attribute… you may choose to use something else.
  • Use Dynamic Groups to group students together according to these tags

# Create a dynamic Group for Elementary School Students

New-DynamicDistributionGroup -Name "All Elementary Students" -alias allelem -IncludedRecipients MailboxUsers -ConditionalDepartment "Elementary School"

# Create a dynamic Group for Middle School Students

New-DynamicDistributionGroup -Name "All Middle Students" -alias allmidd -IncludedRecipients MailboxUsers -ConditionalDepartment "Middle School"

# Create a dynamic Group for High School Students

New-DynamicDistributionGroup -Name "All High Students" -alias allhigh -IncludedRecipients MailboxUsers -ConditionalDepartment "High School"

  • Use transport rules to block email between the groups:

# Elementary School cannot interact with Middle School

New-TransportRule "BlockMessagesBetweenElemAndMiddle" -BetweenMemberOf1 allelem -BetweenMemberOf2 allmidd -RejectMessageEnhancedStatusCode "5.7.1" -RejectMessageReasonText "E-mail messages sent between Elementary School and Middle School students are prohibited according to school policy."

# Elementary School cannot interact with High School

New-TransportRule "BlockMessagesBetweenElemAndHigh" -BetweenMemberOf1 allelem -BetweenMemberOf2 allhigh -RejectMessageEnhancedStatusCode "5.7.1" -RejectMessageReasonText "E-mail messages sent between Elementary School and High School students are prohibited according to school policy."

# Middle School cannot interact with High School

New-TransportRule "BlockMessagesBetweenMiddAndHigh" -BetweenMemberOf1 allmidd -BetweenMemberOf2 allhigh -RejectMessageEnhancedStatusCode "5.7.1" -RejectMessageReasonText "E-mail messages sent between Middle School and High School students are prohibited according to school policy."

You could go further, interested to hear some of your ideas… I can add them to the K-12 Config Checklist.

Jonny

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: