[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

Exchange - User Permissions

Posted on 2007-11-19
10
Medium Priority
?
315 Views
Last Modified: 2010-03-06
Hi,
We have Microsoft Exchange running on a Network with 50 or so users.
One user has said they are able to view other peoples mail.
They should not have permission to do this.  
I have looked at this user and they are not a Member of any Administrators Group.
Nothing else seems out of place either.
Is there anything obvious I am missing?
0
Comment
Question by:harris9999
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 5
10 Comments
 
LVL 11

Expert Comment

by:bsharath
ID: 20312780
Check the exchange mailstore permissions...
0
 
LVL 3

Author Comment

by:harris9999
ID: 20312817
Is that the Mailbox Rights under the Exchanged Advanced Tab?
In for all users it has
Domain Admins
Everyone  - Under the Allow option Read Permissions and Full Mailbox Access are ticked but Greyed out. Is this it?
0
 
LVL 11

Accepted Solution

by:
bsharath earned 2000 total points
ID: 20312862
No in exchange select the exchange mailbox store inside it you have the stores  Go to properties > Security.In there everyone should not have any permissions.
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 11

Expert Comment

by:bsharath
ID: 20312893
In ADS ADUC console >Exchnage tasks > Exchange Advanced > Mailbox Rights .Also everyone should have read permission only
If anything else is selected remove all just for 1 user.
Test before you do to all users...
Give it some time to replicate...
0
 
LVL 3

Author Comment

by:harris9999
ID: 20312969
In the Exchange System Manager, I have went to the Mailbox Store and Properties and the security Tab, in there, Everyone has no permissions.

In the ADUC Everyone has Read Permissions and Full Mailbox Access ticked but greyed out.
Will I check the box for deny beside the Full Mailbox Access?
0
 
LVL 11

Expert Comment

by:bsharath
ID: 20313022
Try to remove the users permission in ADUC for 1 user and see what happens...
0
 
LVL 3

Author Comment

by:harris9999
ID: 20313101
Just removed the Full Mailbox Access or the Read as well?
0
 
LVL 3

Author Comment

by:harris9999
ID: 20313791
I put Deny next to them both but this user is still able to open every ones mailbox by going to
File > Open Other Users Folder
0
 
LVL 11

Expert Comment

by:bsharath
ID: 20317248
Download Active Administrator from
http://www.scriptlogic.com/
See each OU's delegation...This will show if the particular user has full permissions on the OU
0
 
LVL 3

Author Comment

by:harris9999
ID: 20322898
I had left it with the Deny box ticked beside Full Mailbox Access, it seemed to take a couple of hours for the permissions to take effect.  But once they did the user was unable to open there own mailbox.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I don't pretend to be an expert at this, but I have found a few things that are useful. I hope that sharing them here will help others, so they will not have to face some rather hard choices. Since I felt this to be a topic of enough importance and…
Here in this article, you will get a step by step guidance on how to restore an Exchange database to a recovery database. Get a brief on Recovery Database and how it can be used to restore Exchange database in this section!
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question