<

[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x

Exchange 2016: Insufficient access rights to perform the operation. Enabling Remote Mailbox.

Published on
3,187 Points
187 Views
Last Modified:
Shaun Hardneck
Passionate and Experienced IT Professional with experience in Microsoft Exchange Messaging and Office 365 solutions.
How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.

During an installation and configuration of Exchange 2016 with Hybrid deployment, I come across the error message as shown below when running the cmdlet "Enable-RemoteMailbox"



Error: "Active Directory operation failed on Rock.solid.local. This error is not retriable. Additional information: Insufficient access rights to perform the operation."


In my Exchange 2016 environment, this was no different.  To resolve the issue, I performed the steps outlined below.

 

  1.   Open the user’s AD object and select the Security tab. This will show the current security configuration of the object.


If you examine the list and compare to a user account that does work properly, you will notice that certain Exchange permissions are either missing or different. In order to fix this, click on the "Advanced" button. 


Then select the check box that reads “Include inheritable permissions from this object’s parent




By having a look at the Advanced Permissions I saw that the "Inherit Permissions " was not "Enabled"

 

After "Enabling" Inheritance, I ran the same command "Enable-RemoteMailbox" and it completed with out any errors.


I hope the content of this tutorial is helpful to our readers.

 

#ThatLazyAdmin

0
Comment
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
0 Comments

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Join & Write a Comment

This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month