asked on
Exchange 2007 Account Inheritance issue on Full Permissions
Hello Experts,
Recently we have noticed that in one of our exchange server all the mailboxes has lost access to one of our admin account.
To tackle this issue temporarily, I have used the following power-shell command:
Get-Mailbox -Database “Server\Database” | Add-MailboxPermission -user 'accountname' -AccessRights 'FullAccess' -InheritanceType All
This command has added the admin user on full permissions to all the mailboxes on the server, but when I create new mailbox on the server, the admin account is not getting added on full permissions for the new mailbox.
I request your help to get help and troubleshoot this issue.
Recently we have noticed that in one of our exchange server all the mailboxes has lost access to one of our admin account.
To tackle this issue temporarily, I have used the following power-shell command:
Get-Mailbox -Database “Server\Database” | Add-MailboxPermission -user 'accountname' -AccessRights 'FullAccess' -InheritanceType All
This command has added the admin user on full permissions to all the mailboxes on the server, but when I create new mailbox on the server, the admin account is not getting added on full permissions for the new mailbox.
I request your help to get help and troubleshoot this issue.
ExchangePowershellActive Directory
Last Comment
Manikandan Narayanswamy
Hi,
So you mean to say that the Admin user doesn't have the rights to manage the Recipient mailboxes. Check if the Admin account is added to the Recipient Management group.
Thanks
Manikandan
So you mean to say that the Admin user doesn't have the rights to manage the Recipient mailboxes. Check if the Admin account is added to the Recipient Management group.
Thanks
Manikandan
ASKER
I have checked the suggested solution earlier, it does not work here.
The issue is that this problem is only with one exchange server within the environment. When the user mailbox is created on exchange server 1 and inheritance does not work for the admin account.
However, if the user mailbox is created on other exchange server, the inheritance works perfectly fine for the admin account. I have checked the recipient management group and the admin account is a member of the group.
The issue is that this problem is only with one exchange server within the environment. When the user mailbox is created on exchange server 1 and inheritance does not work for the admin account.
However, if the user mailbox is created on other exchange server, the inheritance works perfectly fine for the admin account. I have checked the recipient management group and the admin account is a member of the group.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
http://support.microsoft.com/kb/272153/en-us
The permissions inheritance and the permissions will appear only after the creation of mailbox. The mailbox will be created only after we send an email to the mailbox or try to access the mailbox. This behavior occurs because the mailbox security descriptor is not read from the Active Directory account object until the user logs on or gets mail. The Recipient Update Service does not stamp the inherited permissions when the mailbox is created. After the mailbox is created in the store, the store calculates inherited mailbox rights.
and similar question ask here before
https://www.experts-exchange.com/questions/22704560/Exchange-2007-mailbox-permissions-inherited-from-the-store-level-on-all-mailboxes.html