Link to home
Create AccountLog in
Avatar of TCS-UK
TCS-UK

asked on

Exchange Address list security and best practice

Im sure this has been raised many times-
I want to set the Global Address List in Exchange 2010 so that it is not accessable or viewable from the users. Each "Group/OU" will have there own Address list which is accessable by them and invisible to other Groups/OU's. Can any one point me towrds articles on securing the Address books and best practices. We do now want users E-mailing 10,000 other users and we have a duty of care with data protection etc.
Help with Powershell commands would great...

Thanks in advance
Avatar of Coast-IT
Coast-IT
Flag of United Kingdom of Great Britain and Northern Ireland image

This is a common request for things like hosted Exchange, and although this easy guide is for 2007, the same rules apply ;

http://www.kortekservices.com/lyle/
ASKER CERTIFIED SOLUTION
Avatar of Michael B. Smith
Michael B. Smith
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of TCS-UK
TCS-UK

ASKER

Is it better to hide the GAL then or set the permission to "denied".
I would probably go with "hide it".
Avatar of TCS-UK

ASKER

The SP1 release requires a totally different AD model and the multi-tenant package does not support Unified messaging and public folders to name but a few. This looks like one almighty MS cockup!
Avatar of TCS-UK

ASKER

Although it does not answer the question (Even MS cannot do this) it did high light exactly why it cannot at this time be done. We await the MS White paper for AB segmentation. Thanks Michael.