Solved

Distribution lists and client permission for public folder

Posted on 2003-11-26
4
2,634 Views
Last Modified: 2009-09-08
Hi. I have a domain W2K in native mode and an Exchange 2000. I created many public folders when my domain was in mixed mode. I assigned permissions for each public folder to different user. I changed my domain in native mode and now i can give permissions to distribution list. Is there a way to assign permission only to distribution list bypassing users and permit them to use public folders? I have a lot of public folder and many users and changing permission when the users change group is hard (and it happens very frequently). So i can administer only distribution list permissions in public folder without change permissions for each user
0
Comment
Question by:doc1166
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 

Expert Comment

by:kopplibj
ID: 9825175
Yes this can be done.  What does happen though when you use a distribution list to identify permissions, by default it will change to a security group through AD.  This doesn't affect the ability to see it in the GAL or send e-mails.  If you have several users needing permissions to Public Folders it is much easier to maintain these by lists where you can just add/remove the user once.
0
 

Author Comment

by:doc1166
ID: 9825480
I changed mode of my domain two weeks ago. So now i have "distribution group - universal" for my distribution list and "global group - security" for sharing resource. Now in a public folder where i'm owner, i removed all client permissions for users and i give supervisor permissions to an address assigned to a distribution group - universal. Users member of this gruop don't see public folder. How i do it?
0
 

Accepted Solution

by:
kopplibj earned 250 total points
ID: 9825833
When you migrate to Exchange 2000 or introduce Exchange 2000 servers into your organization, Exchange Server distribution lists convert to Microsoft Windows 2000 Server universal distribution groups.
 
Using Exchange Server Distribution Lists

If an Exchange Server public folder access control list (ACL) contains a distribution list and the public folder is replicated to an Exchange 2000 server, the distribution list converts to a universal distribution group. However, to set permissions, Exchange 2000 uses Windows 2000 universal security groups instead of universal distribution groups.

If the server that is running Exchange 2000 is located in a Windows 2000 domain that is in native mode, the universal distribution group automatically converts to a universal security group when a user gains access to the public folder. However, if the server is located in a Windows 2000 domain that is in mixed mode, the conversion to a universal security group does not occur. Without a successful conversion of public folder permissions, all users lose access to the public folder.

Likewise, if you try to assign public folder permissions to a universal distribution group that was converted from an Exchange Server distribution list, the server that is running Exchange 2000 cannot create a universal security group and the following problems occur:
In System Manager, error number 80004005 appears and you receive the following message:

The operation failed.
In Microsoft Outlook, you receive the following error message:

The Client Operation Failed.
In Event Viewer, under Application, event number 9556 or 9552 appears.

Exchange 2000 users cannot see the public folder in Microsoft Outlook.

Make sure that your organization contains at least one native-mode Windows 2000 domain in which you can store and manage universal security groups. You can either convert an existing domain to native mode or create a new native-mode domain. Then configure a recipient Connection Agreement to replicate the Exchange Server distribution lists to the native-mode Windows 2000 domain.

Also, UDGs can only be converted to USGs if a domain RUS exists for the domain that contains the UDGs. If you install an Exchange 2000 server or an Exchange 2003 server into the native mode domain, then a RUS for that domain will be created automatically. Otherwise, you must manually create a domain RUS for the domain.

0
 

Author Comment

by:doc1166
ID: 9927123
I converted all my universal distribution group in universal security group. Also I converted all my global security group in universal security group. After i merged all my old distribution group with old security group. Now i have only a type of group so i administer exchange permission on public folder in very easy way. It works fine. Thanx
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question