We upgraded from Win2k Domain Exch5.5 to Win2k3 Domain Exch2003. Now I understand that the security and stuff is controlled from Active Directory Users and Computers (ADUC) now. But I am experiencing a problem.
With Exch5.5 we could (locally on the mail server) open any users mailbox by changing the mailbox properties on the local outlook icon. However with our new stuff we get 'access denied you do not have permission' even though we are logged in as a domain admin (=exchange admin).
Looking in ADUC Exchange Advanced tab Mailbox Rights, advanced settings there is a deny line for 'Full Mailbox Access' for Domain admins, enterprise admins, Exchange domain servers and Administrator. IT's inheriting from someplace but I cannot figure out where. There is no 'allow inheritance' checkbox to remove the inheritance like there is on file and folder permissions.