[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1649
  • Last Modified:

Exchange 2010 Management Scope...no effect.

I'm trying to create a management scope for Exchange 2010 SP1 to allow some users in my organizations to manage mailboxes, DLs, etc... I need to apply the management scope to only allow them to see a specific subset of users (contained in a group). I've used the following powershell command:

Set-ManagementScope –Name "XYZManagers"  â€“RecipientRestrictionFilter {memberofgroup -eq "domain.local/ou/etc..."}

The command takes successfully. I assign the management scope to the Role Group's "Write Scope" (the user is assigned to the Role Group). However, when logging on, the user can still see all the email accounts in the organization, unfiltered.

Please let me know what I'm doing wrong here - thanks!!
0
jmichaelpalermo4
Asked:
jmichaelpalermo4
  • 2
  • 2
1 Solution
 
e_aravindCommented:
IMO, after the scope, still the user can see other DL, but will be blocked from writing\modifying the DLs

One of the nice example is available @:
http://muc-ug.org.in/index.php/articles/exchange-2010/115-exchange-2010-role-based-access-control.html
0
 
e_aravindCommented:
The error message (similar one -- "Test the configuration: (point #4))" is also available in this URL
http://www.exchangedictionary.com/index.php/Articles/role-based-access-control-exchange-2010.html
0
 
jmichaelpalermo4Author Commented:
Thans e_aravind -

This article doesn't apply to our situation. I just spoke to a Exchange master who said it's not possible to restrict the readscope using RBAC, just the writescope.
0
 
jmichaelpalermo4Author Commented:
Not possible
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now