Solved

Powershell Exchange - How to list all mailboxes Full Access permission from a particular user name ?

Posted on 2016-08-14
12
53 Views
Last Modified: 2016-10-18
Hi people,

I wonder if anyone here can share some Powershell script or tips in how to check if my AD user account got Full Permission access in some mailboxes ?

because for compliance reason, I need to audit if the certain AD user account has multiple Exchange mailbox Full access permission or not.

Thanks.
0
Comment
12 Comments
 
LVL 67

Expert Comment

by:sirbounty
ID: 41755800
1
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 41755808
Thanks Sir,

in my case here I need to know all DOMAIN\User1 mailbox full access across 2850 Exchange mailboxes.

So how do I use that command above ?
0
 
LVL 67

Expert Comment

by:sirbounty
ID: 41756154
get-mailbox -resultsize unlimited | get-mailboxpermission | where {$_.accessrights -conains 'FullAcess'}
1
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 16

Expert Comment

by:FOX
ID: 41756353
get-MailboxPermission username  -filter "accessrights -eq 'FullAccess'"  | ft samaccountname, displayname,emailaddress,AccessRights | out-file 'c:\temp\FullAccess.csv'
1
 
LVL 67

Expert Comment

by:sirbounty
ID: 41774887
I see I had a type-o - conains, should be -contains, but presumably you'd find that.
Any update?  Still need help?
0
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 41777313
Hi All,

The script doesn't work ?

get-MailboxPermission MyName  -filter "accessrights -eq 'FullAccess'"  | ft samaccountname, displayname,emailaddress,AccessRights | out-file 'c:\temp\FullAccess.csv'

Open in new window


A parameter cannot be found that matches parameter name 'Filter'.
    + CategoryInfo          : InvalidArgument: (:) [Get-MailboxPermission], ParameterBindingException
    + FullyQualifiedErrorId : NamedParameterNotFound,Get-MailboxPermission
0
 
LVL 67

Accepted Solution

by:
sirbounty earned 500 total points (awarded by participants)
ID: 41777397
Did you try what I suggested?
get-mailbox -resultsize unlimited | get-mailboxpermission | where {$_.accessrights -conains 'FullAcess'}

Open in new window

1
 
LVL 7

Author Comment

by:Senior IT System Engineer
ID: 41777398
Hi Sir,

I just required my own username and certain username not all username.

But yes I'll try it anyway.
0
 
LVL 67

Expert Comment

by:sirbounty
ID: 41797634
Did my solution work for you?
0
 
LVL 67

Expert Comment

by:sirbounty
ID: 41819651
Hi ITSystemEngineer - do you need further help or help closing the question?
0
 
LVL 1

Expert Comment

by:LinuxDude
ID: 41821851
List all mailboxes to which a particular user has Full Access permissions:
PS C:\> Get-Mailbox | Get-MailboxPermission -User vasil

List all shared/user/room/whatever mailboxes to which particular user has Full Access permissions:
PS C:\> Get-Mailbox -RecipientTypeDetails UserMailbox,SharedMailbox -ResultSize Unlimited | Get-MailboxPermission -User vasil
0
 
LVL 67

Expert Comment

by:sirbounty
ID: 41847916
I believe this answers the question - not sure why the OP never came back.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article outlines the process to identify and resolve account lockout in an Active Directory environment.
Windows 10 came with  a lot of built in applications, Some organisations leave them there, some will control them using GPO's. This Article is useful for those who do not want to have any applications in their image (example:me).
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question