Breadcrumbs

Configure and Use On-Premises Active Directory Attributes

Crossware Email Signature retrieves user data from Azure Active Directory (Azure AD) via Microsoft’s Graph API. However, only a limited set of default Azure AD attributes are available. To include additional on-premises Active Directory (AD) attributes, those must be synced into Azure AD as extension attributes using Azure AD Connect.

Once synced, these extension attributes can be used in Crossware lookups and signature rules just like any other AD attribute.

Enable Sync of Extension Attributes in Azure AD Connect

  1. Open Azure AD Connect on your server.

  2. Select the Directory extension attribute sync feature.

image-20260104-212943.png

  1. Pick the on-premises AD attributes you want to synchronize.

Only user attributes should be selected not group attributes.

image-20260104-213007.png

  1. Save your changes and complete the wizard.

If you need to change the selected attributes later, simply re-run AzureADConnect.exe to update the configuration.

This process uses Microsoft’s directory extensions sync feature. Crossware does not manage or control these steps.

Confirm the Synced Attributes

After syncing, Azure AD will expose the extension attributes under names like:

extension_9d98ed114c4840d298fad781915f27e4_extensionAttribute1

These names may differ per tenant, so you’ll need to confirm the exact attribute name before using it.

Populate the Attribute Values

There are two ways to fill extension attributes with values:

Option A — Via On-Prem AD Users

  1. Open Active Directory Users and Computers.

  2. Select a user and open Properties.

image-20260104-213621.png

  1. Go to the Attribute Editor tab.

  2. Scroll to the extension attribute you synced (e.g., extensionAttribute1).

image-20260104-213704.png

  1. Enter the desired value and save.

Option B — Via PowerShell

Use the Active Directory PowerShell module:

Set-ADUser -Identity "user@domain.com" -Add @{extensionAttribute1="ValueHere"}

Replace extensionAttribute1 and value as required.

image-20260104-213744.png

Verify the Attribute in Microsoft Graph Explorer

  1. Open Graph Explorer.

  2. Sign in by selecting the profile icon in the upper-right corner.

  3. In the query box, enter the following request:
    https://graph.microsoft.com/beta/users/{user-email}
    Replace {user-email} with the user’s actual email address.

  4. Select Run query.

  5. Confirm that the expected extension attributes are returned in the response.

image-20260104-220803.png

Create a Directory Field in Crossware

  1. Go to the Crossware Portal.

  2. Select Fields.

  3. Choose Create directory field.

  4. Enter a name for the directory field.

  5. In the value field, enter the attribute reference in the following format:

    extension_{AppId}_<onPremAttributeName>

    Example:

    extension_9d98ed114c4840d298fad781915f27e4_CMSPhone

  6. Select Save & Close.

Configure and Use On-Premises Active Directory Attributes.png

Test the Directory Field

  1. Select the field you have created.

  2. Select the Send Test Email icon.

  3. Select Send.

  4. Verify that the custom attribute values appear in the test email.

You’ve now configured On Premise extension attributes. You can use these attributes to dynamically populate fields within Crossware.