![]() ![]() It is very poor practise to use an account in this way. This allowed them access to all mailboxes without having to specify anything. Many email administrators, especially those that have come from an Exchange 5.5 server miss the service account permission. If you then find that a previous admin has locked something down using their own account then you have access to that account which can be used to login and adjust as required. Possibly even remove the groups that the account was a member of, but never delete it. Do not delete a former administrator's accountĪnother rule of thumb though is never delete a former administrator's account.Ĭhange the password, email address etc. More on public folder permissions in our Public Folders section. Owner should be restricted to the administrators of the email server and the highest rights granted should be "Publishing Editor". Furthermore, there are very few reasons why a user should require "Owner" permissions of a folder. There is almost no reason why the permissions on a public folder should have "Default" set to anything other than "None". It is poor practise to grant permissions to a individual's account, unless it is for a quick change (see mailbox permissions below).Īdd users to groups. ![]() Set the "email admins" group as the owner rather than individuals. ![]() Click on the tab "Permissions", then the "Client Permissions" tab. On each folder you will need to right click and choose Properties. If and administrator leaves, you only need to remove their name from the distribution group rather than go through the system removing it all individually.įor Exchange 2003, go in to ESM, Folders, Public Folders. This is the group that you give ownership rights on all public folders. Include the account "administrator" (ie THE domain admin) as a member of the group as well. Some of the areas that it can be used for include:Ĭreate a mail enabled security group called "email admins" or something like that and grant membership to the people usually administrate the email system. ![]() This procedure works throughout the Exchange organisation and can make management of administrators permissions so much easier. With some careful planning and hindsight, management can be improved, along with strengthening the overall security of the Exchange system. Permissions within an Exchange server deployment can be one of the most difficult things to manage. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |