While this may not be a common issue, or at least I certainly hope it is not a common issue for you, it can be a bit vexing to figure out what is going on. You have a user with a recently restored account that is attempting to login to OWA and they are receiving an error similar to the following:
Your account has been disabled.
Copy error details to clipboard
User host address: 126.96.36.199
User: Jane Doe
EX Address: /o=first organization/ou=exchange administrative group
SMTP Address: firstname.lastname@example.org
OWA version: 14.2.318.2
The steps leading up to this error are most likely as follows.
- A user’s account was deleted and their mailbox removed recently. Possibly by accident or possibly by company politics.
- The user’s account is recreated as opposed to restored (which means a new SID and all the fun that goes along with that) and their mailbox is reattached to the account.
- The user now attempts to login with their “new” account into their old mailbox.
- Angry calls to your help desk now ensue.
Most likely your first thought was to do an iisreset but in this case you would be wrong. Here is how you clear this issue up swiftly and easily. Open up the EMS and run:
Clean-MailboxDatabase –Identity <Database Name>
This kicks off a scan of AD that updates the status of disconnected mailboxes in the targeted database. Alternatively you could also just tell the user to wait until Exchange runs its maintenance cycle on the database but that answer definitely won’t win you any friends. Now why does this need to be done? As you’ve probably suspected it is due to cached AD information of the disconnected mailboxes. For more info take a look at KB2682047.