Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 683
  • Last Modified:

PowerShell/Exchange - Access to Shared mailbox but without allowing mail deletion

Dear Experts,

Could you please advise is there some method to set for a user who has access to Shared mailbox, that would be able to read mails only without deletion?

In PowerShell the syntax for giving access to a shared mailbox is the follow one, but this does not contain some read only kind of possibility:
Add-MailboxPermission "TestMailbox" -User IT\R.Smith -AccessRights fullaccess -InheritanceType all

I am aware of another syntax too:
Add-MailboxPermission -Identity "TestMailbox" -User IT\R.Smith -AccessRights ReadPermission
but this is some other permission related as tested and sure still allows the mail deletion, inspite of sounding to some read kind of permission

thanks,
0
csehz
Asked:
csehz
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
The only reliable way I know of is to do it in the mailbox itself.
Therefore you will take away the Full Mailbox Access, then add permissions to the top of the tree and the sub folders. If you grant the permission to a group, then it will be easy to add and remove permissions in the future.

http://exchange.sembee.info/outlook/sharing-non-default-folders.asp

If you need to grant permissions to a tree, then use exfolders to help propagate the permissions down the tree.

You can also add the permissions with EMS using add-mailboxfolderpermissions, but that still will not do the full tree.

Simon.
0
 
csehzIT consultantAuthor Commented:
Thanks it has been tested now, it works exactly as you wrote
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now