I am trying to use admodify.net to remove the local administrators group on a server (not a DC) called j-f-mmas1 from the access list on another users email account. (There is a deny permission present which is causing grief and by removing that servers administrator group from the mailbox rights list altogether I would remove the deny permission.)
I can get the ldap listing for the computer itself, but admodify does not go further than that. There is an option for a specific ldap query but I am not sure what variables would be used against the local administrators on a server within the domain. Again I am trying to do this against the ADMINSTRATOR GROUP on that server, not the administrator itself.
PS - Since these rights are under the advanced exchange setting of mailbox rights it is not present under the security tab and it can not be reached by adsiedit. These rights are inherited but going up the list in AD or in RUS or ESM has yielded NO parent source.