mfrieder
asked on
Disable Option To Open Other User's Folders in Outlook
Good Afternoon,
We have a Windows environment with a SBS 2011 server with Exchange 2007.
There is one Outlook 2007 user in particular who for some reason, her email folders can be seen by other Exchange users if they Open it (File -> Open -> Other User's Folder.) When I tested this with other users, it was possible to view everyone's folders.
I looked in the Exchange Management Tool but I didn't see any signs of these folders being shared. I looked in her Outlook Security settings and I noticed that "Authenticated Users" are allowed to "Read Exchange Information", among other permissions.
My question is... Are there other security settings (client side or server side) that can prevent users from viewing each others' email folders?
We have a Windows environment with a SBS 2011 server with Exchange 2007.
There is one Outlook 2007 user in particular who for some reason, her email folders can be seen by other Exchange users if they Open it (File -> Open -> Other User's Folder.) When I tested this with other users, it was possible to view everyone's folders.
I looked in the Exchange Management Tool but I didn't see any signs of these folders being shared. I looked in her Outlook Security settings and I noticed that "Authenticated Users" are allowed to "Read Exchange Information", among other permissions.
My question is... Are there other security settings (client side or server side) that can prevent users from viewing each others' email folders?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Because I figured it out.
It sound to me as though there's some type of misconfiguration here. The only way that a user would be able to open another user's mailbox folders would be for them to be given explicit permission at the Exchange mailbox level or by a user setting permissions in Outlook. So, there are two places to look:
1. In the Exchange System Management console, drill down to the mailbox level. Right-click one of the problem mailboxes and go to Manage Full Access Permissions. Check the list to see if certain users or a group that includes all users is on this list. Do the same with the Manage Send As Permissions.
2. If you don't find anything there, then go to the user's Outlook application, right-click on their top-level mailbox and go to Properties. Look at the Permissions tab for any users that have rights to open this folder. Do the same with other folders within Outlook to find any locally set permissions.
There's a third place to look, but that's a bit more complicated, so for now just check those two areas.
I'm not sure what you're referring to as "Outlook Security." If you mean the security settings on the user's active directory account, it is normal for Authenticated Users to have Read Exchange Information permissions to every mailbox.