?
Solved

exchange 2010 global viewing of calendar and email boxes.

Posted on 2010-08-16
7
Medium Priority
?
488 Views
Last Modified: 2012-05-10
I have recently upgraded my exchange server to 2010 and now after decomissioning my exchange 2003 server I am starting to get huge requests that certain groups can no longer see calendars or inboxes of mailboxes they used to be able to and with using AD 2003 the exchange tabs no longer exist. I can go in through outlook and change the permissions on calendars (as a temp fix) but I really need to find out how to set up:

1.) certain groups to be able to see and adjust certain email boxes and calendars.
2.) certain users need to be able to open all email accounts through a seperate outlook profile using only thier credentials.

I was hoping to use the same thought process I did for the backupexec user that backs up all the email boxes but when trying to use that user through outlook it just fails on authentication.

thanks to any and all pointers and help in advance.
0
Comment
Question by:cisco_idiot
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 32

Expert Comment

by:endital1097
ID: 33447631
you need to use the add-mailboxpermission cmdlet or the exchange management console manage full access permissions
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33447638
for accounts that have access to everything you can use
get-mailboxdatabase | add-adpermission -extendedrights receive-as,sendas -user backupexec
0
 

Author Comment

by:cisco_idiot
ID: 33448580
Thank you Endital,

the add-mailbox permissions works perfectly for all the individual ones I need to fix. but the add-adpermission seems to be missing something for me when a privledged user tries to open up outlook with the profile for the other user I get the error "cannot open your default e-mail folders. the attempt to log on to microsoft exchange has failed" I can get around this with either the add-mailbox permissions or full access permissions.

could I use the command:
get-mailbox | add-mailboxpermission -user 'domain\admin group' -accessrights 'fullaccess'
?

I think this would be a quick fix but the next time I add a user I would need to do the same thing for each user.

I was looking for all the variables for extended right but can't seem to find them.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 32

Accepted Solution

by:
endital1097 earned 2000 total points
ID: 33448639
as long as you didn't get any errors, you may just need to wait for the information store to refresh which can take up to 2 hours

by setting this ad permission at the database level, any new mailboxes will inherit the permission

correction for above
send-as not sendas
0
 

Author Comment

by:cisco_idiot
ID: 33448786
ok I'll give it a couple of hours. and yeah I caught the send-as my typing is horrible so no worries.

what I got as a response was.

get-mailboxdatabase | add-adpermission -extendedrights Receive-as,send-as -user "email admins"

Identity             User                 Deny  Inherited
--------             ----                 ----  ---------
Mailbox Database ... domain\email Admins     False False
Mailbox Database ... domain\email Admins     False False
Terminated employees domain\email Admins     False False
Terminated employees domain\email Admins     False False

it didn't say it had any errors so I am assuming it is good.
0
 
LVL 32

Expert Comment

by:endital1097
ID: 33448797
yes, you should be good
if you run it again you should get a warning that no changes were made
0
 

Author Closing Comment

by:cisco_idiot
ID: 33449069
Perfect and concise
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A list of top three free exchange EDB viewers that helps the user to extract a mailbox from an unmounted .edb file and get a clear preview of all emails & other items with just a single click on mailboxes.
After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Suggested Courses
Course of the Month13 days, 8 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question