I have a client who uses Exchange 2010. Ask me to grant Send As permission to a couple of users so the users can send on behalf or firstname.lastname@example.org email.
I grant them the Send As permission by sharing the Mailbox email@example.com and tick the Include inheritable permissions from this object's parent in the Security's tab. Because If i will not tick this one, I will not be able to set the Send As permission and will get an error as below:
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:00
Active Directory operation failed on abcsg.client.com. This error is not retriable. Additional information: Access is denied.
Active directory response: 00000005: SecErr: DSID-031521D0, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
The user has insufficient access rights.
Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.140).aspx?v=126.96.36.199&t=exchgf1&e=ms.exch.err.Ex6AE46B
Exchange Management Shell command attempted:
Add-ADPermission -Identity 'CN=Account Dept,CN=Users,DC=abc,DC=co
m' -User 'abc\mel' -ExtendedRights 'Send-as'
Elapsed Time: 00:00:00
But after a couple of minutes that I successfully granted the users rights to Send As on behalf of firstname.lastname@example.org, the Send As permission will be strip off or removed. Can you help me advice on how to permanently add the Send As permission for a specific user?