In this post we’ll look at how to create a new User Principal Name (UPN) Suffix. These instructions are also applicable to Server 2008 as well.
The current best practice for new active directory domain naming is a little hazy see my earlier post Active Directory Domain Naming Best Practices.
But for my scenario i decieded to use a sub domain of our registered company domain. This can be confusing for users as their logon name will appear slightly different to their email address.
So to remedy this we can create a new UPN suffix.
In this example I’ve used an ‘ad’ sub domain of my oxfordsbsguy.com domain. So on initial account creation I only have the @ad.oxfordsbsguy.com domain that i can choose.
To add a new UPN Suffix, open Active Directory Domains and Trusts, and right click the top level on the left hand side Active Directory Domains and Trusts [DC1.ad.oxfordsbsguy.com] and select Properties.
Type in the alternative UPS Suffixes required, in my case I just want my email domain as an additional UPN suffix, and click Add and click OK.
Now back in ADUC, if you select the end user and go to the Account tab you can select the new UPN Suffix.
The end user will now have a username the same as their email address which they will be able to use to login with.
Related Posts:
1. Active Directory Domain Naming Best Practices
2. How to install Exchange 2013 (SP1) on Windows Server 2012 R2
3. How to reset the Directory Services Restore Mode (DSRM) password
4. How to install Exchange 2010 (SP3) on Windows Server 2012
Nice one Carl, with the problems being generated by the opening up of Internet TLDs I can see this would make good standard practice in the future AD Domain creation. I assume you could powershell through your entire user set to achieve the same effect
Hi Karim,
Yes, with a combination of get-aduser and set-aduser and the UserPrincipalName property….maybe I’ll put that in another blog post!
Did you do another blog on for changing all the users in bulk yet? Thanks!