Solved

Allow email access, but no network access to former employees

Posted on 2007-03-27
5
244 Views
Last Modified: 2010-03-17
We have some user that are no longer with the company, but managment would still like to allow them access to their company email for so many days, but not allow them any network access/logon rights. Striclty email/webmail access, nothing more. We are in a server 2003 domain, using Exchange 2003.

Thanks for the help,
0
Comment
Question by:Linette_Laiminger
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 5

Expert Comment

by:Atropa
ID: 18803752
Don't disable/delete their account.  Only allow their accounts to logonto the exchange server in their account properties.  I believe that this is the simplest way.  Then set their account to expire completely after so many days.  This way they can't get onto the network, they can see their e-mail and after the predetermined time, they no longer have access to any of it.

good luck...a
0
 
LVL 6

Expert Comment

by:shayneg
ID: 18803803
what I would do is change the password to their accounts so they have no access and then in AD on the users properties go to Exchange General tab and then delivery options. Then forward all email to an external email account they have. That way they have no access to any of your servers this totally minimising the companies risk to attacks etc.
0
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 500 total points
ID: 18804007
Linette_Laiminger,

create a security group and add all the users in. On each server, hit the local policy and dissalow access from the network for that group

Use GPO to specify a home page for webmail and dont let them change, you can also configure contect advisor so they cannot go anywhere else


Regards,

James
0
 
LVL 1

Expert Comment

by:Computer101
ID: 21216374
Forced accept.

Computer101
EE Admin
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
This article describes how to import an Outlook PST file to Office 365 using a third party product to avoid Microsoft's Azure command line tool, saving you time.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
Suggested Courses

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question