asked on

Add AD Group permissions to public folders Exchange 2010

In EX2003 I was able to add MailAdmins and HR groups (AD security groups) to a tree of public folders to give them higher rights to edit or delete items.
I need to apply this to a set of subfolders of our top level _Projects folder. The HR group is actually only needed to be assigned to two 3rd level folders.

In EX2010, this does not seem to work for me.
I have tried http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/2a6b612a-132f-4d91-a0ee-70daff8b039f but that still gives errors about security descriptors. also http://social.technet.microsoft.com/Forums/en/exchange2010/thread/24ce7135-4733-4d27-b2af-76df2cc196a5

All examples point to individual users having a set of permissions applied. I want to use a group so that changes in physical group memberships don't impact upon PF ACL's.

I cant see how the new RBAC apply to client access permissions to individual folders.

ideas or solutions most welcome

Shreedhar Ette

Hi,

You can use the .\AddUsersToPFRecursive.ps1 script.

Refer this article:
http://technet.microsoft.com/en-us/library/aa998834.aspx

https://www.experts-exchange.com/questions/23895268/Possibility-to-use-AddUsersToPFRecursive-ps1-not-at-TOP-folder.html

Hope this helps,
Shree

Shreedhar Ette

Also Check this:
http://www.howexchangeworks.com/2010/06/public-folder-permissions-added-to.html

Robberbaron (robr)

ASKER

I had seen the first two and had tried the script with what i thought was a mail-enable security group. But it still gave the security descriptor error.

ASKER CERTIFIED SOLUTION

Robberbaron (robr)

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial