Exchange 2010 Management Scope...no effect.

I'm trying to create a management scope for Exchange 2010 SP1 to allow some users in my organizations to manage mailboxes, DLs, etc... I need to apply the management scope to only allow them to see a specific subset of users (contained in a group). I've used the following powershell command:

Set-ManagementScope –Name "XYZManagers"  –RecipientRestrictionFilter {memberofgroup -eq "domain.local/ou/etc..."}

The command takes successfully. I assign the management scope to the Role Group's "Write Scope" (the user is assigned to the Role Group). However, when logging on, the user can still see all the email accounts in the organization, unfiltered.

Please let me know what I'm doing wrong here - thanks!!
LVL 3
jmichaelpalermo4Asked:
Who is Participating?
 
jmichaelpalermo4Connect With a Mentor Author Commented:
Thans e_aravind -

This article doesn't apply to our situation. I just spoke to a Exchange master who said it's not possible to restrict the readscope using RBAC, just the writescope.
0
 
e_aravindCommented:
IMO, after the scope, still the user can see other DL, but will be blocked from writing\modifying the DLs

One of the nice example is available @:
http://muc-ug.org.in/index.php/articles/exchange-2010/115-exchange-2010-role-based-access-control.html
0
 
e_aravindCommented:
The error message (similar one -- "Test the configuration: (point #4))" is also available in this URL
http://www.exchangedictionary.com/index.php/Articles/role-based-access-control-exchange-2010.html
0
 
jmichaelpalermo4Author Commented:
Not possible
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.