?
Solved

Exchange 2010 Admin Rights

Posted on 2010-11-29
7
Medium Priority
?
1,048 Views
Last Modified: 2012-05-10
I was given a task to find out if this is possible in MS Exchange 2010. We are going to get an Exchange server which will host 2 post office. ex. lala.com and tata.com. First of all is this considered 2 post offices?

We would like to have 1 admin per domain. Ideally this would give them the rights do any and everything needed to administer their perspective domain only.

They should not have rights to administer any high level tasks such as add new post offices, manage/create other post offices, and so on.

I am looking for resources or (the correct terminology so I can find resource) on how to get this done.

Or even an example of how my Google query should look, to find the correct resources.

Any help on this will be appreciated
0
Comment
Question by:EnriquePhoenix
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 49

Expert Comment

by:Akhater
ID: 34232410
>> lala.com and tata.com. First of all is this considered 2 post offices?
no they are called SMTP domains

and no this cannot be done, in exchange the delegation can be made on exchange servers but not on smtp domains
0
 
LVL 5

Author Comment

by:EnriquePhoenix
ID: 34232556
Not exactly the start I wanted to see. :( So do I have to run 2 Exchange servers to separate the rights.
0
 
LVL 49

Expert Comment

by:Akhater
ID: 34232607
not really it will not even work since you have no way of stopping admin1 to assign users emails @domain2.com

the only thing that would do what you want is exchange hosted
0
Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

 
LVL 5

Author Comment

by:EnriquePhoenix
ID: 34243224
Any other takers? I will end this post tomorrow if nobody has anymore input on the matter.
0
 
LVL 5

Author Comment

by:EnriquePhoenix
ID: 34259989
Configuration scopes enable you to control who can manipulate servers and databases.

Recipient and configuration scopes enable you to segment the management of server, database or recipient objects in your organization. For example, a recipient scope can be added to a role assignment so that administrators in Vancouver can only manage recipients in the same office. A server configuration scope could be added to a different role assignment so that administrators in Sydney can only manage servers in their Active Directory site.

http://technet.microsoft.com/en-us/library/dd335131.aspx
0
 
LVL 49

Accepted Solution

by:
Akhater earned 1500 total points
ID: 34262924
that is true I am aware of this but, if i understood correctly, you want these ppl to administer a domain name not a specific OU or database .

you cant deny the admin of lala.com to create a user @tata.com for example that's why i told you it can't be done
0
 
LVL 5

Author Closing Comment

by:EnriquePhoenix
ID: 34270478
Thanks
0

Featured Post

On Demand Webinar - Networking for the Cloud Era

This webinar discusses:
-Common barriers companies experience when moving to the cloud
-How SD-WAN changes the way we look at networks
-Best practices customers should employ moving forward with cloud migration
-What happens behind the scenes of SteelConnect’s one-click button

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article lists the top 5 free OST to PST Converter Tools. These tools save a lot of time for users when they want to convert OST to PST after their exchange server is no longer available or some other critical issue with exchange server or impor…
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
This video discusses moving either the default database or any database to a new volume.
Suggested Courses
Course of the Month11 days, 1 hour left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question