Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Manage Full Access Permission

Status
Not open for further replies.
patstone

patstone

IS-IT--Management
Aug 20, 2004
168
GB
All,

I am migrating hundreds of mailboxes from current_Exch07 to new_Exch07 within the same Org and my problem is with the "Manage Full Access Permission" once they are migrated.

When I view the permission on the current_Exch07 server there are additional accounts that did not migrate accross to the new_Exch07 server.

To get over this problem I ran the following command replacing A/C_name

get-mailboxserver "<mail_server_name>" | add-adpermission -user "A/C_name" -accessrights ExtendedRight -extendedRights Send-As, Receive-As, ms-Exch-Store-Admin

This works fine but if I go and create a new account it does not inherite the A/C_name and this is causing me a problem.

Can anyone suggest a command I can try ?

Thanks

 
Sort by date Sort by votes
Get-MailboxDatabase server1\mdb1 | add-adpermission -user someuser -accessRights GenericRead, GenericWrite -extendedrights Send-As

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Hi Mark,

Thanks for your reply

I replaced server1\mdb1 & someuser with "server1\mailbox database" & Joe Bloggs and ran but I got no response telling me it did or did not work and when I go to the Manage Full Access Permissions of a user the test user mentioned about is not added ..!!

 
Upvote 0 Downvote
Sorry, I had to re-read this. It's not normal for an admin to be granted Full Control of every mailbox, that defeats the default security in Exchange.

You can run your command on a scheduled basis:
get-mailboxserver "<mail_server_name>" | add-adpermission -user "A/C_name" -accessrights ExtendedRight -extendedRights Send-As, Receive-As, ms-Exch-Store-Admin

And that will add any new accounts, however this is not normal or best practice.

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Cheers Mark.

I know its not best practice but it was not my call.

Have you ever migrated mailboxes from Exch 07 to Exch 07 and had issue's with full access permission's !
 
Upvote 0 Downvote
Have not had reason to do that so can't say that I have. All migrations have been from 2003 to 2007.

I hope you find this post helpful.

Regards,

Mark

Check out my scripting solutions at
Work SMARTER not HARDER. The Spider's Parlor's Admin Script Pack is a collection of Administrative scripts designed to make IT Administration easier! Save time, get more work done, get the Admin Script Pack.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DrB0b
  • Locked
  • Question
Exchange 2019 Full Access to all mailboxes
Replies
3
Views
169
DrB0b
DrB0b
Rohit Bareja
  • Locked
  • Question
View and access only own records, and not the records by others on SharePoint.
Replies
3
Views
1K
garysm
garysm
napoleao
  • Locked
  • Question
Full Access Permision Log
Replies
0
Views
57
napoleao
napoleao
JimmyRosa
  • Locked
  • Question
Errors when adding a user Full mailbox permissions to another mailbox
Replies
2
Views
120
Zelandakh
Zelandakh
dieter2
  • Locked
  • Question
customize outlook web access
Replies
3
Views
85
ShackDaddy
ShackDaddy

Part and Inventory Search

Sponsor

Back
Top