troubleshooting Question

What are the correct default permissions for a shared mailbox?

Avatar of Jer
JerFlag for United States of America asked on
ExchangeActive Directory
4 Comments2 Solutions14 ViewsLast Modified:

While troubleshooting user access to an Exchange 2013 shared mailbox, I noticed some curiosities regarding the security of the mailbox.  The troubleshooting started because I was unable to access the mailbox, even with Full Access permissions.  When I perform the get-mailboxpermission commend for the mailbox, I notice 5 entries that are listed twice, including Domain Admins, Enterprise Admins, Organization Management.  One listing shows AccessRights to be {FullAccess, DeleteItem, ReadPermission, ChangePermission, ChangeOwner}, IsInherited (True), and Deny (False).  That looks normal to me.  The other listing concerns me.  That listing shows AccessRights to be {FullAccess}, IsInherited (True), and Deny (True).  Should any of these have Deny set to True?  I wouldn't think so.  Our environment has been through several versions of Exchange (since 5.5), so I expect there is a bunch of residual settings.  I did find a ticket stating that ADSI Edit can be used to clean up the Deny settings, but I just wanted to confirm that I should be able to clear all Deny settings or if there was perhaps a reason that they are there?

I appreciate any assistance provided.

Thank you,


Our community of experts have been thoroughly vetted for their expertise and industry experience.

Log in to continue reading
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform for $9.99/mo
View membership options
Unlock 2 Answers and 4 Comments.
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
The Value of Experts Exchange in My Daily IT Life

Experts Exchange (EE) has become my company's go-to resource to get answers. I've used EE to make decisions, solve problems and even save customers. OutagesIO has been a challenging project and... Keep reading >>


Owner of Outages.IO
Phoenix, Arizona, United States
Member Since 2016
Join a full scale community that combines the best parts of other tools into one platform.
Unlock 2 Answers and 4 Comments.
View membership options
“All of life is about relationships, and EE has made a virtual community a real community. It lifts everyone's boat.”
William Peck

Member since 2004