Move Mailbox with exchange 2010 failed with insuffisicient right on the DC

Posted on 2011-04-20
Medium Priority
Last Modified: 2012-05-11
I moved a mailbox from a exchange 2007 to 2010 with no problem but i want to rename the servername of the exchange 2010 and move back the mailbox to the exchange 2007 to uninstall exchange 2010 and rename it and install it again but i get this error

 Error: An error occurred while updating a user object after the move operation. --> Active Directory operation failed on xxx.domain.com. This error is not retriable. Additional information: Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
 --> The user has insufficient access rights.

The user mailbox already get "Check the box to allow inheritable
permissions from parent"
Question by:cegepdematane
  • 2
  • 2

Expert Comment

ID: 35433076
I've used this article for this issue in the past -

Author Comment

ID: 35433090
already did like i said

"The user mailbox already get "Check the box to allow inheritable
permissions from parent""

Accepted Solution

owner66 earned 2000 total points
ID: 35433401
2 additional points from the article:
"Not only does this check box need to be checked for the user object, but also for the OU container that holds the object."
"The error about a user not having permission is NOT YOU. The action is being performed by the Exchange Enterprise Servers group (specifically the Exchange server handling the move request). Make sure the Exchange Enterprise Servers group has the permissions for the following: - (Object tab) List Contents [Allow] - (Properties tab) Read Display Name [Allow] - (Properties tab) Write Display Name [Allow] - (Properties tab) Read Exchange Information [Allow] - (Properties tab) Write Exchange Information [Allow] - (Properties tab) Read Personal Information [Allow] - (Properties tab) Write Personal Information [Allow] - (Properties tab) Read Public Information [Allow] - (Properties tab) Write Public Information [Allow] I was missing the Read/Write Exchange Information on a few users (don't know why), but after adding the ACLs back in it worked for everyone. "

Author Closing Comment

ID: 35433873
It was the admincount = 1 need to be 0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
This article will help to fix the below errors for MS Exchange Server 2016 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
how to add IIS SMTP to handle application/Scanner relays into office 365.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
Suggested Courses

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question