<div>
You can use a group policy at the domain level to &quot;deny logon locally&quot;<br />
The setting can be found here:<br />
Coumputer Configuration | Windows Settings | Security Settings | Local Policies | User Rights Assignment <br />
Setting = Deny log on locally<br />
&nbsp;<br />
Thanks<br />
Mike<br />
<br />
<a href="https://filedb.experts-exchange.com/incoming/2009/03_w12/118792/deny-logon-locally.jpg" target="_blank" class="file-inline" title="deny local login (29 KB)"><svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><path d="M67.508 468.467c-58.005-58.013-58.016-151.92 0-209.943l225.011-225.04c44.643-44.645 117.279-44.645 161.92 0 44.743 44.749 44.753 117.186 0 161.944l-189.465 189.49c-31.41 31.413-82.518 31.412-113.926.001-31.479-31.482-31.49-82.453 0-113.944L311.51 110.491c4.687-4.687 12.286-4.687 16.972 0l16.967 16.971c4.685 4.686 4.685 12.283 0 16.969L184.983 304.917c-12.724 12.724-12.73 33.328 0 46.058 12.696 12.697 33.356 12.699 46.054-.001l189.465-189.489c25.987-25.989 25.994-68.06.001-94.056-25.931-25.934-68.119-25.932-94.049 0l-225.01 225.039c-39.249 39.252-39.258 102.795-.001 142.057 39.285 39.29 102.885 39.287 142.162-.028A739446.174 739446.174 0 0 1 439.497 238.49c4.686-4.687 12.282-4.684 16.969.004l16.967 16.971c4.685 4.686 4.689 12.279.004 16.965a755654.128 755654.128 0 0 0-195.881 195.996c-58.034 58.092-152.004 58.093-210.048.041z"/></svg>deny-logon-locally.jpg</a>
</div>


deny-logon-locally.jpg

<div>
Why don't you just use a public folder or a group rather than a mailbox?<br />
<br />
-M
</div>


<div>
Akhater:<br />
<br />
Can you please point me to the article that talks about it.<br />
<br />
Thanks.
</div>


<div>
Sure<br />
<a href="http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/managing-resource-mailboxes-exchange-server-2007-part1.html" rel="ugc">http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/managing-resource-mailboxes-exchange-server-2007-part1.html</a><br />
<br />
Just create it as a resource mailbox
</div>


<div>
<div class="content wysiwyg-content">
In order to avoid creating generic AD account when people ask for generic email accounts, we would like to know if there is a way to be able to deny the generic account to be use to logon but not removing the access of getting to the mailbox linked with the account. <br />
<br />
We are currently solving this via Public folders but we are looking for something different.<br />
<br />
So for example:<br />
<br />
Request comes like: Create email account salerorders@domain.com<br />
<br />
In order to create a regular mailbox we have to create an account named saleorders in AD and then the mailbox. &nbsp;This is a problem because then the AD account salesorders can be use to logon on any workstation. <br />
So we would like the account to be locked down and the mailbox accessible. <br />
<br />
Any ideas?<br />
<br />
Thanks.<br />
<br />

</div>
</div>


In order to avoid creating generic AD account when people ask for generic email accounts, we would like to know if there is a way to be able to deny the generic account to be use to logon but not removing the access of getting to the mailbox linked with the account. 

We are currently solving this via Public folders but we are looking for something different.

So for example:

Request comes like: Create email account salerorders@domain.com

In order to create a regular mailbox we have to create an account named saleorders in AD and then the mailbox.  This is a problem because then the AD account salesorders can be use to logon on any workstation. 
So we would like the account to be locked down and the mailbox accessible. 

Any ideas?

Thanks.



Looking for a way to deny user account to be able to logon but keep the access to the mailbox

Exchange is the server side of a collaborative application product that is part of the Microsoft Server infrastructure. Exchange's major features include email, calendaring, contacts and tasks, support for mobile and web-based access to information, and support for data storage.

Exchange

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.