Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 70
  • Last Modified:

Make "Username" "owner" of all groups in Exchange Admin Center for Exchange 2013?

We have a large number of groups, both distribution and security, we'd like to make a certain admin account the owner of all the groups so that any and all changes can be made without error.  Is there a way to do this at once in EAC?
0
Daniel Checksum
Asked:
Daniel Checksum
  • 5
  • 5
4 Solutions
 
Todd NelsonSystems EngineerCommented:
Owner?  There is no "owner" assigned to groups in Exchange.

As long as the "certain admin account" is a member of Organization Management they are able to make changes to all groups.
0
 
Daniel ChecksumAuthor Commented:
OK, I guess I should go ahead and clarify here.  Logging in to EAC as "Administrator" (THE domain administrator) and attempting to add a user, getting "You don't have sufficient permissions.  This operation can only be performed by a manager of the group." -- We were going to make Administrator the owner of every single group so if/when we log on as Administrator we're not given this error.

The current workaround is to add the user in the ADUC group AND THEN add in EAC.
0
 
Todd NelsonSystems EngineerCommented:
What AD groups is the "administrator" a member of?  The only one that matters for Exchange to be able to do most all things in Exchange is Organization Management.
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
Daniel ChecksumAuthor Commented:
It's a member in quite a few groups, not to list them all, but, at least:  "Exchange Organization Administrators, Exchange Recipient Administrators, Exchange Servers, Exchange View-Only Administrators"
0
 
Todd NelsonSystems EngineerCommented:
I would recommend adding the administrator as a member of Organization Management.  Try it out, make sure AD replication completes, and then perform the same task.

Let me know.
0
 
Daniel ChecksumAuthor Commented:
It's actually already there, showed up when I tried to add it with the error "this user is already a member..."

I actually just tried to add Administrator as the owner of the group and got the same exact error about not having permission.
0
 
Todd NelsonSystems EngineerCommented:
Hmmm.  Okay.  This should do it...

Take an accounting of your current permissions.  This command will export a list of all distros and their existing managers to a CSV file...

Get-DistributionGroup | Select-Object Name,ManagedBy | Export-Csv C:\DistroManagers.csv -NoType

Open in new window


This command will set Administrator as the manager of an individual distro...

Set-DistributionGroup -Identity "GrouName" -ManagedBy "Administrator" -BypassSecurityGroupManagerCheck

Open in new window


This command will set Administrator as the manager of all distros...

Get-DistributionGroup | Set-DistributionGroup -ManagedBy "Administrator" -BypassSecurityGroupManagerCheck

Open in new window


Hope that helps.
0
 
Daniel ChecksumAuthor Commented:
Update:  Just got back from the weekend and have a few more pressing projects now.  Will get back to you with results when I have more time.
0
 
Daniel ChecksumAuthor Commented:
Thanks, Todd.  Coworker applied the commands and all appears to be working.  Fantastic job, sir.
0
 
Todd NelsonSystems EngineerCommented:
You are most welcome.
0

Featured Post

Ask an Anonymous Question!

Don't feel intimidated by what you don't know. Ask your question anonymously. It's easy! Learn more and upgrade.

  • 5
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now