What can we do to secure our email so that a rogue Domain Admin can't read it?
Obviously he can't copy our PST files over the network while we have Outlook open, or while our laptops aren't on the network. Can he download our mail from the Exchange server? We are also Domain Admins and he doesn't have our logins. If he changed them, we would obviously know.
So can he download and read our mail from the server without us knowing? If so, how can we secure our mail, or at least know if he has accessed it?
And please don't say something stupid like "don't make him domain admin" or "fire him." These are not options right now.
Thanks for your help.