Solved

Exchange 2007 Permissions

Posted on 2009-05-04
4
261 Views
Last Modified: 2013-11-15
Hello,

We have a mailbox in our organization which is a communal mailbox, it's our helpdesk mailbox actually. Our problem is that with most helpdesk inboxes, we all have access to it which is causing problems with emails going missing, or being filed away before being completed.

I've been tasked by my manager to find out the following information:

1. What permissions are needed to open a mailbox within Outlook, but not be able to move/delete mail from the mailbox? I can see that if you grant Receive-As at the database or storage group level, that will allow them to logon to all mailboxes within that container, but that is a little too much power for what I need. I just want one mailbox to be effected.

2. If I put a deny Full Access on the mailbox to multiple people, does that also deny the permissions such as delete item, send-as, etc, the so called lower permissions? All the helpdesk staff are domain admins(might not be the best way, but it's what we're stuck with at the moment), and that seems to be where they are getting the access to the mailbox, via the domain admins group.

Thanks.
0
Comment
Question by:Ignition_Helpdesk
4 Comments
 
LVL 24

Expert Comment

by:Rajith Enchiparambil
ID: 24298045
"""1. What permissions are needed to open a mailbox within Outlook, but not be able to move/delete mail from the mailbox? I can see that if you grant Receive-As at the database or storage group level, that will allow them to logon to all mailboxes within that container, but that is a little too much power for what I need. I just want one mailbox to be effected."""

Just give the same permission on the helpdesk mailbox rather than on the store.

Rajith.
0
 
LVL 6

Expert Comment

by:shahsejal
ID: 24298110
Also please see this link
How to Allow Mailbox Access
http://technet.microsoft.com/en-us/library/aa996343.aspx
0
 
LVL 65

Accepted Solution

by:
Mestha earned 250 total points
ID: 24300412
Server side, there are only two sets of permissions for mailboxes.

Full Access
No access.

No middle ground.

If you want to restrict it down, then you have to do it all client side.
That means removing the full mailbox access (And receive as) and then setting the permissions through Outlook.

http://www.amset.info/outlook/sharing-non-default-folders.asp

Simon.
0
 
LVL 37

Expert Comment

by:Jamie McKillop
ID: 24318670
You could also convert the mailbox to a public folder and set reviewer permissions for anyone you don't want to be able to delete or move items.

JJ
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
Find out what you should include to make the best professional email signature for your organization.
This video will demonstrate how to find the puppet warp tool from the edit menu and where to put the points to edit.
This video discusses moving either the default database or any database to a new volume.

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now