Exchange 2007 User / Group / Mailbox Security

I'm not having any luck researching on this so I'm hoping someone can give me some links or search phrases or ideas.  This Tony Redmond book I have is really awful.

I want to manage mailboxes based on group membership.  For example, Group A can't send outside the organization, Group B has different storage and send limits, Group C can only send / receive from whitelisted addresses....  

I also want mailboxes grouped when viewing the global address book.  It's awful how all mailboxes and contacts are just lumped in there.

Any help?
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

well the GAL portion you can do with Address Lists.  Your users would have to click the drop down but they could look at adderss lists that are setup however you choose to configure them.
Khurram Ullah KhanCommented:
OK you can achieve the above functionalities by using diferrent exchange 2007 functionalities.
1. Group A can't send outside the organization
You need to create a distribution group for this containing all these types of users and create a HUB (orginzational rule) for this distribution group for this functionality.
2. Group B has different storage and send limits
You can achieve this by creating a new mailbox Database and move all the required mailboxes in it and apply your restriction on DB level.
3. Group C can only send / receive from whitelisted addresses.
You can also achieve this by using first procedure

the last part of query will automatically achieve becuase when you create a distribution group it will automatically appear in your GAL after your last address book update

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ctarbetAuthor Commented:
Boy, that was a great answer!

One more detail: can I whitelist / blacklist entire domains with respect to distribution group membership?
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Khurram Ullah KhanCommented:
Yes you need to create rule like this,

from users Inside organization
  and sent to users Outside organization
send Delivery not authorized, message refused to sender with 5.7.1
except when text appears in a To

ctarbetAuthor Commented:
Thanks!  That will give me plenty to run with.
ctarbetAuthor Commented:
Perfect. See all posts for more info
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.