Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Exchange 2010 Impersonation Account Permissions

Posted on 2014-03-12
4
Medium Priority
?
655 Views
Last Modified: 2014-03-13
I have configured the Scope and Account for the Impersonation Account, I now need to grant permissions for multiple users to use the Impersonation Account to access the target Application. How do I do this?
0
Comment
Question by:CTCRM
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 33

Expert Comment

by:Busbar
ID: 39925668
Use these commands:
1- Command to create a new role called AppEWSImpersonationRole:
New-ManagementRole -Name AppEWSImpersonationRole -Parent ApplicationImpersonation

2- Command to assign a user to AppEWSImpersonationRoleAssignment:
New-ManagementRoleAssignment -Role AppEWSImpersonationRole -User Username AppEWSImpersonationRoleAssignment

you can use get-mailbox with the second command to assign it to multiple users.
0
 
LVL 2

Author Comment

by:CTCRM
ID: 39925858
Genius
I have created the Scope (New-ManagementScope -Name:Impersonationscope)

Then run (RecipientRestrictionFilter: Name -eq "Mailbox"), not sure what this line does but Impersonation Scope is set with the above filter.

Now to assign an account as the Impersonation Account I ran the following:
(New-ManagementRoleAssignment -Name:NewCRMAccess -Role:ApplicationImpersonation -User: crmexaccess -CustomRecipientWriteScope: Impersonationscope)

With this I now have the scope and account set and just want to assign 3 AD user accounts to use the above Impersonation Account to access CRM Application.

Can you provide the full PS command from the prompt on Exchange that would add User1, User2, and User3 please. Apologies for asking, I'm new to Power Shell.
0
 
LVL 33

Accepted Solution

by:
Busbar earned 1600 total points
ID: 39926024
the command already posted:

New-ManagementRoleAssignment -Role AppEWSImpersonationRole -User user1 AppEWSImpersonationRoleAssignment

New-ManagementRoleAssignment -Role AppEWSImpersonationRole -User user2 AppEWSImpersonationRoleAssignment

New-ManagementRoleAssignment -Role AppEWSImpersonationRole -User user3 AppEWSImpersonationRoleAssignment
0
 
LVL 2

Author Closing Comment

by:CTCRM
ID: 39926238
Thanks for the support, this solution worked.
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There are times when we need to generate a report on the inbox rules, where users have set up forwarding externally in their mailbox. In this article, I will be sharing a script I wrote to generate the report in CSV format.
On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
The video tutorial explains the basics of the Exchange server Database Availability groups. The components of this video include: 1. Automatic Failover 2. Failover Clustering 3. Active Manager
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question