?
Solved

Restricting access to Address list in Exchange

Posted on 2006-07-09
6
Medium Priority
?
255 Views
Last Modified: 2010-03-06
Hello.

I have Exchange 2003. I created a new Address list and want everybody to see it in Outlook except one group.
I added that group in security of Address List and in ACL put all permossions to DENY.
The problem is that members of this group can still see address list in their outlooks.
Can you please tell me what I am doing wrong?


0
Comment
Question by:musaler
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
6 Comments
 
LVL 29

Expert Comment

by:mass2612
ID: 17070347
Hi,

Please note from the Exchange 2003 training kit

"If the address list is part of an offline address list that a user has permission to
download, they will be able to access the address list offline. This is true even if they have
been explicitly denied permission online."

"Normally when you make changes to an address list, the changes are replicated to
other Exchange servers in the organization by the Recipient Update Service. This
replication occurs on a configurable schedule. There are times when you do not want
to wait until the next scheduled update takes place, so Exchange Server 2003 allows
you to force an immediate update manually.

To update an address list manually, perform the following steps:
1. Expand the Recipients container in Exchange System Manager.
2. Click the Recipient Update Services container. Notice that there are two default
Recipient Update Services: one for the domain and one for the enterprise. The
enterprise Recipient Update Service is responsible for updating system objects
such as the Message Transfer Agent and the System Attendant. The domain
Recipient Update Service updates recipient objects.
3. Right-click the Recipient Update Service for the domain and click Update Now.
This will force any address list changes to be replicated immediately. Alternatively,
you can click Rebuild, which rather than just updating changes will rebuild all the
address lists."
0
 

Author Comment

by:musaler
ID: 17073297
I deleted Offine address book completely rom exchange. Now Outlook cloents dont have it. But still, restricting accesss to address list doesn't provent user to see it in Outlook
0
 
LVL 29

Expert Comment

by:mass2612
ID: 17077285
I could be wrong but I don't know if you will be able to prevent users from seeing the list in Outlook but they should not be able to use it in any way. Is this what you were hoping to achieve?

This would not prevent them from e-mailing the members of the list by selecting them manually from the GAL either.
0
 
LVL 29

Accepted Solution

by:
mass2612 earned 2000 total points
ID: 17079702
Hi,

"By default, all distribution groups that you create are visible to all users through the global address list.
In some cases you may want to create a list that is maintained through Exchange, but restrict is visibility. You cannot control the visibility from the server, so must use a work around."

Please check out the following - http://www.amset.info/exchange/groups-hidemembers.asp
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
How to resolve IMCEAEX NDRs in Exchange or Exchange Online related to invalid X500 addresses.
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question