• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 289
  • Last Modified:

Exchange 2010 - Permission issues when adding/removing users from Security Groups

Exchange 2010 SP1 server, 2003 DC's. Exisiting Domain Admins have the 'Inherit Permissions...." unchecked - by design. Is it normal for the user account to NOT re-inherit permissions (ie getting that check-box re-checked) when being removed from the Domain Admin's group.
I have ensured AD had replicated between all domains, even waited 24 hours just in case, and I have to manually re-inherit permissions on the user-account in AD. Is that by design, or is there another problem?
0
mhdcommunications
Asked:
mhdcommunications
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
Yes.
Even removing them from the group doesn't reinstate the inheritance - it will actually be removed again.
You need to clear a value on the user account called AdminCount on the account. Then reapply the inheritance.

Simon.
0
 
mhdcommunicationsAuthor Commented:
Thanks
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now