Is it possible with 2010 exchange tracking logs to prove the following
We have a mailbox which has been made accesible in terms of permissions so a number of users havve access and control over the mailbox. We need to prove which of those users has sent/forwarded information from that mailbox elsewhere. Can the logs prove who did these actions? Or will they just show the mailbox itself sent/forwarded them on?