Solved

Can't Manage Full Access Permission on Mailbox Exchange 2007

Posted on 2014-02-10
4
1,561 Views
Last Modified: 2014-02-10
When trying to grant myself full access to a users mailbox I get the following error:

Warning:
The ACL for the object "CN=username,CN=OU,DC=Domain,DC=Domain" is not in canonical order (Deny/Allow/Inherited) and will be ignored.

Exchange Management Shell command completed:
Add-MailboxPermits -Identity  'CN=username,CN=OU,DC=Domain,DC=Domain' -User 'MyUsername' -AccessRights 'FullAccess'

Does anyone know how to resolve this?
0
Comment
Question by:Shawn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 35

Accepted Solution

by:
Joseph Daly earned 245 total points
ID: 39847910
This looks wrong to me. Are you using the console or shell?

'CN=username,CN=OU,DC=Domain,DC=Domain

Distinguished name should look like below.

CN=George\, Curious,OU=container,OU=Test,DC=domain,DC=com
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39847911
This is probably a permission inheritance issue. Open ADSIEdit, select "default naming context" navigate to the location above and right click select properties and check to ensure that the permissions are inherited from the parent folder.

Will.
0
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 39847917
Assuming your distinguished name path above is correct this should be the correct form.

'CN=username,OU=OU,DC=Domain,DC=Domain
0
 
LVL 53

Expert Comment

by:Will Szymkowski
ID: 39847923
Read the post to fast, it is due to wrong format CN=username,OU=OUname,DC=domain,DC=com

Will.
0

Featured Post

Turn Insights Into Action

You’ve already invested in ITSM tools, chat applications, automation utilities, and more. Fortify these solutions with intelligent communications so you can drive business processes forward.

With xMatters, you'll never miss a beat.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This article outlines some of the reasons why an email message gets flagged as spam on a recipient's end.
This video demonstrates how to sync Microsoft Exchange Public Folders with smartphones using CodeTwo Exchange Sync and Exchange ActiveSync. To learn more about CodeTwo Exchange Sync and download the free trial, go to: http://www.codetwo.com/excha…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question