Locking down Exchange Recipient Admins?
hypnotoad
Banned Posts: 915
Hi,
We have a few exchange recipient admins and their main goal is only to create mailboxes for new users. We would like to prevent them from being able to give themself full-access permissions and opening a mailbox. Is there anyway to do this? Or is the exchange recipient administrator role not granular enough?
Thanks,
HT
We have a few exchange recipient admins and their main goal is only to create mailboxes for new users. We would like to prevent them from being able to give themself full-access permissions and opening a mailbox. Is there anyway to do this? Or is the exchange recipient administrator role not granular enough?
Thanks,
HT
Comments
-
blargoe
Member Posts: 4,174 ■■■■■■■■■□
I didn't think recipient admins were able to manage securityIT guy since 12/00
Recent: 11/2019 - RHCSA (RHEL 7); 2/2019 - Updated VCP to 6.5 (just a few days before VMware discontinued the re-cert policy...)
Working on: RHCE/Ansible
Future: Probably continued Red Hat Immersion, Possibly VCAP Design, or maybe a completely different path. Depends on job demands... -
royal
Member Posts: 3,352 ■■■■□□□□□□
I didn't think recipient admins were able to manage security
They're not. You need the highest Exchange Administrative rights to do this.“For success, attitude is equally as important as ability.” - Harry F. Banks -
hypnotoad
Banned Posts: 915
They're not. You need the highest Exchange Administrative rights to do this.
So there isn't any way an exchange recipient admin should be able to read someone's mailbox with the default Exchange 2007 SP1 configuration? -
royal
Member Posts: 3,352 ■■■■□□□□□□
So there isn't any way an exchange recipient admin should be able to read someone's mailbox with the default Exchange 2007 SP1 configuration?
Not by default.“For success, attitude is equally as important as ability.” - Harry F. Banks