Matt Pessolano
asked on
Exchange 2003 Mailbox permission
I have a problem where everyone can see eveyone elses mailbox is they know how to open them in outlook. I want to restrict this so only the administrator can open other mailboxes. How do i do this in exchange. the last time i did this the stores wouldnt mount and i had to call microsoft to get it fix because i screwed up the permission.
This is very complex. The first step is to check in the Exchange System Manager and in the Active Directory Users and Computers management console to see if the Everyone group or the Authenticated Users group has been given Send As and Receive As permissions to the entire container. Check the security settings on the ADUC Users container and also check the permissions in the ESM at the Site, Server and information store levels and post what you find in terms of the Everyone and/or Authenticated Users group.
ASKER
the everyone group under each mailbox store is greyed out and has full control and send and recieve as checked. i cant find the everyone group in the ADUC.
First, let's check the Exchange delegation settings - maybe someone delegated the Exchange Full Administrator role to the Everyone group by mistake. In the ESM, right-click on the top-level object (the Site name) and click Delegate control. You may get a banner page, click Next and you'll see a list of the delegations that have been made. If you see the Everyone group there, then remove it.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.