Public/User/New-HybridMailbox.ps1

Function New-HybridMailbox {
    <#
    .SYNOPSIS
    Designed to manage users in Hybrid Office 365 environment.
    On-Premises Exchange server is required.
         
    The UserPrincipalName is created by copying the Primary SMTP Address (as created by the On-Premises Exchange Email Address Policies or manually entering PrimarySMTP)
    Can be run from any machine on the domain that has the module for ActiveDirectory installed.
    The script will prompt once for the names of a Domain Controller, Exchange Server and the Azure AD Connect server.
    The script will also prompt once for DisplayName & SamAccountName Format.
    All of these prompts will only occur once per machine (per user).
    Should you wish to change any/all options just run: Select-Options
    The script stores & encrypts both your Exchange/AD & Office 365 password.
    You should be prompted only once unless your password changes or a time-out occurs.
 
    By default, the script creates an new Active Directory User & corresponding mailbox in Exchange Online.
 
    You will be prompted for the OU where to place the user(s).
    By default, you will be presented to choose from all OUs with the word "user" or "resource" in it.
    To add additional search criteria, use: -OUSearch "SomeOtherSearchCriteria"
    You will also be prompted for which license options the user should receive.
 
    If using the "UserToCopy" parameter, the new user will receive all the attributes (Enabled, StreetAddress, City, State, PostalCode & Group Memberships).
    The script enables the option: User must change password at next logon. Unless this switch is used: -DontForceUserToChangePasswordAtLogon
 
    Whichever Retention Policy is set to "Default", will be the retention policy that
    the Exchange Online Mailbox will receive - unless this switch is used: -SpecifyRetentionPolicy
    If -SpecifyRetentionPolicy is used, the script will prompt for which Retention Policy to assign the user(s).
 
    ** The script will also take CSV input. The minimum parameters are FirstName & LastName **
    ** See example below **
         
    .EXAMPLE
    Import-Csv C:\data\theTEST.csv | New-HybridMailbox
 
    Example of CSV (illustrated without commas):
 
    FirstName LastName Description OfficePhone
    John Smith Warehouse (404)555-1212
    Sally James Manager of LA Branch (213)444-2312
    Jeff Williams Jeff's Description (404)312-8989
    Jamie Yothers Acting CEO (212)492-6578
 
    .EXAMPLE
    New-HybridMailbox -FirstName John -LastName Smith
 
    .EXAMPLE
    New-HybridMailbox -UserToCopy "FredJones@contoso.com" -FirstName Jonathan -LastName Smithson
 
    .EXAMPLE
    New-HybridMailbox -FirstName Jon -LastName Smith -OfficePhone "(404)555-1212" -MobilePhone "(404)333-5252" -DescriptiADdedon "Hired Feb 12, 2018"
     
    .EXAMPLE
    New-HybridMailbox -FirstName Jon -LastName Smith -StreetAddress "123 Main St" -City "New York" -State "NY" -Zip "10080" -Country "US"
     
    .EXAMPLE
    New-HybridMailbox -FirstName Jon -LastName Smith -Office "Manhattan" -Title "Vice President of Finance" -Department "Finance" -Company "Contoso, Inc."
     
    #>

    [CmdletBinding()]
    Param (
        [parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [string] $UserToCopy,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]   
        [switch] $Shared,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [switch] $New,
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $FirstName,
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $LastName,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [switch] $SpecifyRetentionPolicy,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [string] $PrimarySMTPAddress,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [string] $SecondarySMTPAddress,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [switch] $DontForceUserToChangePasswordAtLogon,
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [ValidateScript( {if ($_ -notlike "* *") {Return $True} else {Write-Host "Please choose an SharedMailboxEmailAlias without spaces"}})]
        [string] $SharedMailboxEmailAlias,
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [string] $DisplayName,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $OfficePhone,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $MobilePhone,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]
        [string] $Description,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $StreetAddress,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $City,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $State,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Zip,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $SAMPrefix,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(Mandatory = $true, ValueFromPipelineByPropertyName = $true, ParameterSetName = "UPN")]
        [switch] $NoMail,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Country,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Office,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Title,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Department,
        [parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [string] $Company,
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Copy")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "New")]
        [Parameter(ValueFromPipelineByPropertyName = $true, ParameterSetName = "Shared")]        
        [string] $OUSearch = "Resource"
    )
    DynamicParam {
            
            
        # Set the dynamic parameters' name
        $ParamName_UPNSuffix = 'UPNSuffix'
        # Create the collection of attributes
        $AttributeCollection = New-Object System.Collections.ObjectModel.Collection[System.Attribute]
        # Create and set the parameters' attributes
        $ParameterAttribute = New-Object System.Management.Automation.ParameterAttribute
        $ParameterAttribute.Mandatory = $false
        $ParameterAttribute.Position = 1
        $ParameterAttribute.ParameterSetName = 'Copy'
        # Add the attributes to the attributes collection
        $AttributeCollection.Add($ParameterAttribute)  
        # Create and set the parameters' attributes
        $ParameterAttribute2 = New-Object System.Management.Automation.ParameterAttribute
        $ParameterAttribute2.Mandatory = $false
        $ParameterAttribute2.Position = 1
        $ParameterAttribute2.ParameterSetName = 'New'
        # Add the attributes to the attributes collection
        $AttributeCollection.Add($ParameterAttribute2)  
        # Create and set the parameters' attributes
        $ParameterAttribute3 = New-Object System.Management.Automation.ParameterAttribute
        $ParameterAttribute3.Mandatory = $true
        $ParameterAttribute3.Position = 1
        $ParameterAttribute3.ParameterSetName = 'UPN'
        # Add the attributes to the attributes collection
        $AttributeCollection.Add($ParameterAttribute3)  
        # Create the dictionary
        $RuntimeParameterDictionary = New-Object System.Management.Automation.RuntimeDefinedParameterDictionary
        # Generate and set the ValidateSet
        $arrSet = [adsi]([System.DirectoryServices.ActiveDirectory.Forest]::GetCurrentForest()).schema.name.replace("CN=Schema", "LDAP://CN=Partitions")| select -ExpandProperty upnsuffixes
        $ValidateSetAttribute = New-Object System.Management.Automation.ValidateSetAttribute($arrSet)    
        # Add the ValidateSet to the attributes collection
        $AttributeCollection.Add($ValidateSetAttribute)
        # Create and return the dynamic parameter
        $RuntimeParameter = New-Object System.Management.Automation.RuntimeDefinedParameter($ParamName_UPNSuffix, [string], $AttributeCollection)
        $RuntimeParameterDictionary.Add($ParamName_UPNSuffix, $RuntimeParameter)
    
        return $RuntimeParameterDictionary
    
    }
        
    Begin {
        $password_ss = Read-Host "Enter a Password for the User(s) " -AsSecureString
        $RootPath = $env:USERPROFILE + "\ps\"
        $User = $env:USERNAME
    
        if (!(Test-Path $RootPath)) {
            try {
                New-Item -ItemType Directory -Path $RootPath -ErrorAction STOP | Out-Null
            }
            catch {
                throw $_.Exception.Message
            }           
        }        
        While (!(Get-Content ($RootPath + "$($user).ADConnectServer") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-ADConnectServer
        }
            
        While (!(Get-Content ($RootPath + "$($user).EXCHServer") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-ExchangeServer
        }
        $ExchangeServer = Get-Content ($RootPath + "$($user).EXCHServer")
    
        While (!(Get-Content ($RootPath + "$($user).TargetAddressSuffix") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-TargetAddressSuffix
        }
        $targetAddressSuffix = Get-Content ($RootPath + "$($user).TargetAddressSuffix")
              
        While (!(Get-Content ($RootPath + "$($user).DomainController") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-DomainController
        }
        $DomainController = Get-Content ($RootPath + "$($user).DomainController")   
            
        While (!(Get-Content ($RootPath + "$($user).DisplayNameFormat") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-DisplayNameFormat
        }
        $DisplayNameFormat = Get-Content ($RootPath + "$($user).DisplayNameFormat")    

        While (!(Get-Content ($RootPath + "$($user).SamAccountNameCharacters") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-SamAccountNameCharacters
        }
        [int]$SamAccountNameCharacters = Get-Content ($RootPath + "$($user).SamAccountNameCharacters")     

        While (!(Get-Content ($RootPath + "$($user).SamAccountNameOrder") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
            Select-SamAccountNameOrder
        }
        $SamAccountNameOrder = Get-Content ($RootPath + "$($user).SamAccountNameOrder")
        
        if ($SamAccountNameOrder -eq "SamFirstFirst") {

            While (!(Get-Content ($RootPath + "$($user).SamAccountNameNumberOfFirstNameCharacters") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
                Select-SamAccountNameNumberOfFirstNameCharacters -SamAccountNameCharacters $SamAccountNameCharacters
            }
            [int]$SamAccountNameNumberOfFirstNameCharacters = Get-Content ($RootPath + "$($user).SamAccountNameNumberOfFirstNameCharacters")
        }
        else {
            While (!(Get-Content ($RootPath + "$($user).SamAccountNameNumberOfLastNameCharacters") -ErrorAction SilentlyContinue | ? {$_.count -gt 0})) {
                Select-SamAccountNameNumberOfLastNameCharacters -SamAccountNameCharacters $SamAccountNameCharacters
            }
            [int]$SamAccountNameNumberOfLastNameCharacters = Get-Content ($RootPath + "$($user).SamAccountNameNumberOfLastNameCharacters")
        }

        #######################################
        # Connect #
        #######################################
        try {
            $null = Get-Command "Get-OnPremExchangeServer" -ErrorAction Stop
        }
        catch {
            Connect-Exchange -ExchangeServer $ExchangeServer -ViewEntireForest
        }
        try {
            $null = Get-AzureADTenantDetail -erroraction stop -ErrorAction Stop
        }
        catch {
            Connect-Cloud $targetAddressSuffix -AzureADver2      
        }
        If ($SpecifyRetentionPolicy) {
            try {
                $null = Get-Command "Get-CloudMsolAccountSku" -ErrorAction Stop
            }
            Catch {
                Connect-Cloud $targetAddressSuffix -ExchangeOnline -EXOPrefix
            }
            Remove-Variable -Name RetentionPolicyToAdd -ErrorAction SilentlyContinue
            try {
                $RetentionPolicyToAdd = ((Get-CloudRetentionPolicy -erroraction stop).name | Out-GridView -OutputMode Single -Title "Choose a single Retention Policy and Click OK")
            }
            Catch {
                Write-Output "Error running the command Get-CloudRetentionPolicy."
                Write-Output "Please make sure you are connected to Exchange Online with the Prefix, Cloud, and try again"
                Break
            }
        }
    
        $OUSearch2 = "User"
        $ou = (Get-ADOrganizationalUnit -Server $domainController -filter * -SearchBase (Get-ADDomain -Server $domainController).distinguishedname -Properties canonicalname | 
                where {$_.canonicalname -match $OUSearch -or $_.canonicalname -match $OUSearch2
            } | Select canonicalname, distinguishedname| sort canonicalname | 
                Out-GridView -OutputMode Single -Title "Choose the OU in which to create the new user, then click OK").distinguishedname
        if (!$NoMail) {
            $GuidFolder = Join-Path $env:TEMP ([Guid]::NewGuid().tostring())
            New-Item -Path $GuidFolder -ItemType Directory
            [string[]]$optionsToAdd = (Get-CloudSkuTable -all | Out-GridView -Title "Choose License Options, with Control + Click" -PassThru)
            Watch-ToLicense -GuidFolder $GuidFolder -optionsToAdd $optionsToAdd
            If ($SpecifyRetentionPolicy) {
                $GuidFolderRetention = Join-Path $env:TEMP ([Guid]::NewGuid().tostring())
                New-Item -Path $GuidFolderRetention -ItemType Directory
                Watch-ToSetRetention -GuidFolderRetention $GuidFolderRetention -RetentionPolicyToAdd $RetentionPolicyToAdd
            }
        }        
    }
    
    Process {

        #######################################
        # Copy ADUser (Template) & Create New #
        #######################################

        if ($SharedMailboxEmailAlias) {
            $LastName = $SharedMailboxEmailAlias
        }
    
        if ($UserToCopy) {
            if ($UserToCopy -like "*@*") {
                $UserToCopy = (Get-ADUser -LDAPfilter "(userprincipalname=$UserToCopy)").samaccountname
            }
            $template = Get-ADUser -Identity $UserToCopy -Server $domainController -Properties Enabled, StreetAddress, City, State, PostalCode
            $template = $template | Select Enabled, StreetAddress, City, State, PostalCode
            $groupMembership = Get-ADUser -Identity $UserToCopy -Server $domainController -Properties memberof | select -ExpandProperty memberof    
        }
        $Last = $LastName -replace (" ", "")
        $First = $FirstName -replace (" ", "")
    
        ###############################################
        # NOT SHARED DisplayName & SamAccount #
        ###############################################
        if (!$Shared) {
    
            $DisplayName = $ExecutionContext.InvokeCommand.ExpandString($DisplayNameFormat)
       
            ##############################################
            # SamAccountName #
            ##############################################
            if (!$SAMPrefix) {
                if ($SamAccountNameOrder -eq "SamFirstFirst") {
                    # SamFIRSTFirst
                    $SamAccountName = (($First[0..($SamAccountNameNumberOfFirstNameCharacters - 1)] -join '') + $Last)[0..($SamAccountNameCharacters - 1)] -join ''
                    $i = 2
                    while (Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)") {
                        $CharactersUsedForIteration = ([string]$i).Length
                        $SamAccountName = $SamAccountName = ((($First[0..($SamAccountNameNumberOfFirstNameCharacters - 1)] -join '') + $Last)[0..($SamAccountNameCharacters - ($CharactersUsedForIteration + 1))] -join '') + $i
                        $i++
                    }
                }
                else {
                    # SamLASTFirst
                    $SamAccountName = (($Last[0..($SamAccountNameNumberOfLastNameCharacters - 1)] -join '') + $First)[0..($SamAccountNameCharacters - 1)] -join ''
                    $i = 2
                    while (Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)") {
                        $CharactersUsedForIteration = ([string]$i).Length
                        $SamAccountName = ((($Last[0..($SamAccountNameNumberOfLastNameCharacters - 1)] -join '') + $First)[0..($SamAccountNameCharacters - ($CharactersUsedForIteration + 1))] -join '') + $i
                        $i++
                    }
                }
            }
    
            else {
                [int]$SAMPrefixNumberOfCharacters = ([string]$SAMPrefix).Length
                if ($SamAccountNameOrder -eq "SamFirstFirst") {
                    # SamFIRSTFirst WITH PREFIX
                    $SamAccountName = ($SAMPrefix + (($First[0..($SamAccountNameNumberOfFirstNameCharacters - 1)] -join '') + $Last))[0..($SamAccountNameCharacters - 1)] -join ''
                    $i = 2
                    while (Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)") {
                        $CharactersUsedForIteration = ([string]$i).Length
                        $SamAccountName = $SamAccountName = ($SAMPrefix + (($First[0..($SamAccountNameNumberOfFirstNameCharacters - 1)] -join '') + $Last))[0..($SamAccountNameCharacters - ($CharactersUsedForIteration + 1))] -join '' + $i
                        $i++
                    }
                }
                else {
                    # SamLASTFirst WITH PREFIX
                    $SamAccountName = ($SAMPrefix + (($Last[0..($SamAccountNameNumberOfLastNameCharacters - 1)] -join '') + $First))[0..($SamAccountNameCharacters - 1)] -join ''
                    $i = 2
                    while (Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)") {
                        $CharactersUsedForIteration = ([string]$i).Length
                        $SamAccountName = (($SAMPrefix + (($Last[0..($SamAccountNameNumberOfLastNameCharacters - 1)] -join '') + $First))[0..($SamAccountNameCharacters - ($CharactersUsedForIteration + 1))] -join '') + $i
                        $i++
                    }
                }
            } ### End with Prefix
        } ### End: NOT SHARED DISPLAYNAME AND SAMACCOUNTNAME ###
    
        #############################
        # SHARED SamAccountName #
        #############################
    
        Else {
            $LastName = $LastName.replace(" ", "")
    
            $SamAccountName = $LastName[0..($SamAccountNameCharacters - 1)] -join ''
            $i = 2
            while (Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)") {
                $CharactersUsedForIteration = ([string]$i).Length
                $SamAccountName = ($LastName[0..($SamAccountNameCharacters - ($CharactersUsedForIteration + 1))] -join '') + $i
                $i++
            }
    
        } # End: SHARED SAMACCOUNTNAME
    
        # SamAccount To Lower
        $samaccountname = $samaccountname.tolower()
            
        # Set CN to DisplayName
        $cn = $DisplayName
        $i = 2
        while (Get-ADUser -Server $domainController -LDAPFilter "(cn=$cn)") {
            $cn = $DisplayName + $i
            $i++
        }
        $name = $cn
    
        #########################################
        # Create Parameters for New ADUser #
        #########################################
                
        $hash = @{
            "Instance"          = $template
            "Name"              = $name
            "DisplayName"       = $DisplayName
            "GivenName"         = $FirstName
            "SurName"           = $LastName
            "OfficePhone"       = $OfficePhone
            "mobile"            = $MobilePhone
            "description"       = $Description
            "streetaddress"     = $StreetAddress
            "city"              = $City
            "state"             = $State
            "postalcode"        = $Zip
            "country"           = $Country
            "office"            = $Office
            "title"             = $Title
            "department"        = $Department
            "company"           = $Company                                    
            "SamAccountName"    = $samaccountname
            "UserPrincipalName" = $userprincipalname
            "AccountPassword"   = $password_ss
            "Path"              = $ou
        }
        $params = @{}
        ForEach ($key in $hash.keys) {
            if ($($hash.item($key))) {
                $params.add($key, $($hash.item($key)))
            }
        }
            
        #########################################
        # Create New ADUser #
        #########################################

        if (!$DontForceUserToChangePasswordAtLogon) {
            New-ADUser @params -Server $domainController -ChangePasswordAtLogon:$true -Enabled:$true
        }
        else {
            New-ADUser @params -Server $domainController -ChangePasswordAtLogon:$false -Enabled:$true
        }
     
        if ($UserToCopy) {
            $groupMembership | Add-ADGroupMember -Server $domainController -Members $samaccountname
        }

        # If ProxyAddresses are to be added manually
        $Proxies = @()

        if ($PrimarySMTPAddress) {
            $PrimaryProxy += ("SMTP:" + $PrimarySMTPAddress)
            Set-ADUser -Identity $SamAccountName -Add @{proxyaddresses = $PrimaryProxy}
        } 
        
        if ($SecondarySMTPAddress) {
            $SecondaryProxy += ("smtp:" + $SecondarySMTPAddress)
            Set-ADUser -Identity $SamAccountName -Add @{proxyaddresses = $SecondaryProxy}
        }

        # Purge old jobs
        Get-Job | where {$_.State -ne 'Running'}| Remove-Job
    
        if (!$NoMail) {
    
            ##################################################
            # Enable Remote Mailbox in Office 365 #
            ##################################################
            if ($PrimarySMTPAddress) {
                Enable-OnPremRemoteMailbox -DomainController $domainController -Identity $samaccountname -PrimarySmtpAddress $PrimarySMTPAddress -RemoteRoutingAddress ($samaccountname + "@" + $targetAddressSuffix) -Alias $samaccountname 
            }
            else {
                Enable-OnPremRemoteMailbox -DomainController $domainController -Identity $samaccountname -RemoteRoutingAddress ($samaccountname + "@" + $targetAddressSuffix) -Alias $samaccountname 
            }
            
            ##############################################################
            # Set UserPrincipalName #
            # After Email Address Policy, Set UPN to same as PrimarySMTP #
            ##############################################################
            
            $userprincipalname = (Get-ADUser -Server $domainController -Identity $SamAccountName -Properties proxyaddresses | Select @{
                    n = "PrimarySMTPAddress" ; e = {( $_.proxyAddresses | ? {$_ -cmatch "SMTP:*"}).Substring(5)}
                }).primarysmtpaddress
            Set-ADUser -Server $domainController -Identity $SamAccountName -userprincipalname $userprincipalname
               
            ########################################
            # Convert To Shared #
            ########################################
            if ($Shared) {
                Start-Job -Name ConvertToShared {
                    Start-Sleep -Seconds 300
                    $userprincipalname = $args[0]
                    ConvertTo-Shared -UserToConvert $userprincipalname
                } -ArgumentList  $userprincipalname | Out-Null
            }
    
            ########################################
            # Write UPNs to Temp GUID file #
            ########################################
    
            $tempfile = Join-Path $GuidFolder ([Guid]::NewGuid().tostring())
            $UserPrincipalName | Set-Content $tempfile
            If ($SpecifyRetentionPolicy) {
                $tempfileRetention = Join-Path $GuidFolderRetention ([Guid]::NewGuid().tostring())
                $UserPrincipalName | Set-Content $tempfileRetention
            }
        
        } # End of IF MAIL (ABOVE)
    
        # IF "NO MAIL" FOR THIS USER (BELOW)
        Else {
            $LastName = $LastName.replace(" ", "")
            $FirstName = $FirstName.replace(" ", "")
            $userprincipalname = $LastName + "-" + $FirstName + "@" + $PsBoundParameters[$ParamName_UPNSuffix]
                
            $i = 2
            $F = $null
            while (Get-ADUser -LDAPfilter "(userprincipalname=$userprincipalname)") {
                $F = $FirstName + $i
                $userprincipalname = $LastName + "-" + $F + "@" + $PsBoundParameters[$ParamName_UPNSuffix]
                $i++
            }
            if ($F) {
                $name = $LastName + ", " + $F
            }
            else {
                $name = $LastName + ", " + $FirstName
            }
            Set-ADUser -Server $domainController -Identity $SamAccountName -userprincipalname $userprincipalname
        }
    
        ########################################
        # Verbose Output of ADUser Created #
        ########################################
        $properties = @(
            'DisplayName', 'Title', 'Office', 'Department', 'Division'
            'Company', 'Organization', 'EmployeeID', 'EmployeeNumber', 'Description', 'GivenName'
            'Surname', 'StreetAddress', 'City', 'State', 'PostalCode', 'Country', 'countryCode'
            'POBox', 'MobilePhone', 'OfficePhone', 'HomePhone', 'Fax', 'cn'
            'mailnickname', 'samaccountname', 'UserPrincipalName', 'proxyAddresses'
            'Distinguishedname', 'legacyExchangeDN', 'EmailAddress', 'msExchRecipientDisplayType'
            'msExchRecipientTypeDetails', 'msExchRemoteRecipientType', 'targetaddress'
        )
    
        $Selectproperties = @(
            'DisplayName', 'Title', 'Office', 'Department', 'Division'
            'Company', 'Organization', 'EmployeeID', 'EmployeeNumber', 'Description', 'GivenName'
            'Surname', 'StreetAddress', 'City', 'State', 'PostalCode', 'Country', 'countryCode'
            'POBox', 'MobilePhone', 'OfficePhone', 'HomePhone', 'Fax', 'cn'
            'mailnickname', 'samaccountname', 'UserPrincipalName', 'Distinguishedname'
            'legacyExchangeDN', 'EmailAddress', 'msExchRecipientDisplayType'
            'msExchRecipientTypeDetails', 'msExchRemoteRecipientType', 'targetaddress'
        )
    
        $CalculatedProps = @(
            @{n = "OU" ; e = {$_.Distinguishedname | ForEach-Object {($_ -split '(OU=)', 2)[1, 2] -join ''}}},
            @{n = "PrimarySMTPAddress" ; e = {( $_.proxyAddresses | ? {$_ -cmatch "SMTP:*"}).Substring(5) -join ";" }},
            @{n = "smtp" ; e = {( $_.proxyAddresses | ? {$_ -cmatch "smtp:*"}).Substring(5) -join ";" }},
            @{n = "x500" ; e = {( $_.proxyAddresses | ? {$_ -match "x500:*"}).Substring(0) -join ";" }},
            @{n = "SIP" ; e = {( $_.proxyAddresses | ? {$_ -match "SIP:*"}).Substring(4) -join ";" }}
        )   
    
        Get-ADUser -Server $domainController -LDAPfilter "(samaccountname=$samaccountname)" -Properties $Properties -searchBase (Get-ADDomain -Server $domainController).distinguishedname -SearchScope SubTree |
            select ($Selectproperties + $CalculatedProps) | FL
    }
    
    End {
        ########################################
        # Sync Azure AD Connect #
        ########################################
        Sync-ADConnect -Sleep 5
    
        ########################################
        # Stop the Licensing Watcher Function #
        ########################################
        if (!$NoMail) {
            Start-Job -Name DeleteGuidFolder {
                $GuidFolder = $args[0]
                New-Item -Path $GuidFolder -Name "ALLDONE" -Type File
                while ((Get-ChildItem -Path $GuidFolder).count -gt 0) {
                    Start-Sleep -Seconds 5
                }
                Remove-Item -Path $GuidFolder -Confirm:$False -force -verbose
            } -ArgumentList $GuidFolder
            if ($RetentionPolicyToAdd) {
                Start-Job -Name DeleteGuidFolderRetention {
                    $GuidFolderRetention = $args[0]
                    New-Item -Path $GuidFolderRetention -Name "ALLDONE" -Type File
                    while ((Get-ChildItem -Path $GuidFolderRetention).count -gt 0) {
                    }
                    Remove-Item -Path $GuidFolderRetention -Confirm:$False -force -verbose
                } -ArgumentList  $GuidFolderRetention
            }
        }
    }
}