[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Office 365/With Dirsync Permission Report

Posted on 2015-02-02
1
Medium Priority
?
159 Views
Last Modified: 2015-02-09
Hi i am trying to get a permission report for a OU

trying to get mailbox and calendar permissions


please advise
0
Comment
Question by:Jorge Ocampo
1 Comment
 
LVL 37

Accepted Solution

by:
Jian An Lim earned 1500 total points
ID: 40589674
your question is VERY broad.

In short, it is achievable, depends on what you really want.

In exchange term,
do you want to know who have delegation rights to mailbox/calendar (read/write?)
do you want to know who have full mailbox rights for another users?
do you want to know who has send as rights for another users?
do you want to know at folder level, who has rights on each folders (any folders)? (end user can add/remove anytime because folder rights on owner)


Again, all of them is achievable if you have Organization management rights on Exchange, but a report like this run forever.

####################
My better way is to enable mailbox auditing (which is free on office 365) and you can run a non-owner report on each user. this will not only say who have access it but also tell you what they have done (read a email, open a folder, and etc) and a transaction they have performed.

https://technet.microsoft.com/en-us/library/jj150575%28v=exchg.150%29.aspx
0

Featured Post

Making Bulk Changes to Active Directory

Watch this video to see how easy it is to make mass changes to Active Directory from an external text file without using complicated scripts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Are you looking for the options available for exporting EDB files to PST? You may be confused as they are different in different Exchange versions. Here, I will discuss some options available.
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval
how to add IIS SMTP to handle application/Scanner relays into office 365.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question