Solved

Allow email access, but no network access to former employees

Posted on 2007-03-27
5
233 Views
Last Modified: 2010-03-17
We have some user that are no longer with the company, but managment would still like to allow them access to their company email for so many days, but not allow them any network access/logon rights. Striclty email/webmail access, nothing more. We are in a server 2003 domain, using Exchange 2003.

Thanks for the help,
0
Comment
Question by:Linette_Laiminger
5 Comments
 
LVL 5

Expert Comment

by:Atropa
ID: 18803752
Don't disable/delete their account.  Only allow their accounts to logonto the exchange server in their account properties.  I believe that this is the simplest way.  Then set their account to expire completely after so many days.  This way they can't get onto the network, they can see their e-mail and after the predetermined time, they no longer have access to any of it.

good luck...a
0
 
LVL 6

Expert Comment

by:shayneg
ID: 18803803
what I would do is change the password to their accounts so they have no access and then in AD on the users properties go to Exchange General tab and then delivery options. Then forward all email to an external email account they have. That way they have no access to any of your servers this totally minimising the companies risk to attacks etc.
0
 
LVL 48

Accepted Solution

by:
Jay_Jay70 earned 500 total points
ID: 18804007
Linette_Laiminger,

create a security group and add all the users in. On each server, hit the local policy and dissalow access from the network for that group

Use GPO to specify a home page for webmail and dont let them change, you can also configure contect advisor so they cannot go anywhere else


Regards,

James
0
 
LVL 1

Expert Comment

by:Computer101
ID: 21216374
Forced accept.

Computer101
EE Admin
0

Featured Post

Active Directory Webinar

We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many people use more than one email account and so it becomes difficult for them to manage them when they use separate accounts,  so, in this article, I have shared an easy way to add Other Mail Accounts in your Google Inbox. It helps to combine all…
This article describes my battle tested process for setting up delegation. I use this process anywhere that I need to setup delegation. In the article I will show how it applies to Active Directory
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question