Best practice for Exchange Administration Delegation
Posted on 2008-10-31
I'm reading about DST patch applied to the Exchange Server 2003 and how it can cause the mailbox store to unmount among other things. I'm reading that control should be delegated to a non-ambiguous user. I'm on the mail server where it was instructed I should go to the server, right-click and choose delegate control which brings up the Exchange Administration Delegation Wizard. The two accounts I see there are these:
I have two questions. I see this entry on the MS page of unacceptable SID's:
Description: A user account for the system administrator. By default, it is the only user account that is given full control over the system.
I'm guessing this is the \Administrator account I see listed. Is it?
My other question if it is. If I remove it and assign a newly created specialized group for control and add this account to the group, will I be in the clear as far as avoiding this problem?
Oh, and is there anything else I should consider before making this move?