Solved

Exchange 2010 - Permission issues when adding/removing users from Security Groups

Posted on 2013-02-01
2
278 Views
Last Modified: 2013-02-19
Exchange 2010 SP1 server, 2003 DC's. Exisiting Domain Admins have the 'Inherit Permissions...." unchecked - by design. Is it normal for the user account to NOT re-inherit permissions (ie getting that check-box re-checked) when being removed from the Domain Admin's group.
I have ensured AD had replicated between all domains, even waited 24 hours just in case, and I have to manually re-inherit permissions on the user-account in AD. Is that by design, or is there another problem?
0
Comment
Question by:mhdcommunications
2 Comments
 
LVL 63

Accepted Solution

by:
Simon Butler (Sembee) earned 500 total points
ID: 38844029
Yes.
Even removing them from the group doesn't reinstate the inheritance - it will actually be removed again.
You need to clear a value on the user account called AdminCount on the account. Then reapply the inheritance.

Simon.
0
 
LVL 1

Author Closing Comment

by:mhdcommunications
ID: 38906879
Thanks
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
To show how to generate a certificate request in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Servers >> Certificates…
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question