IT tutorials
 
Technology
 

Exchange Server 2010 : Configuring Mailbox Delivery Restrictions, Permissions, and Storage Limits (part 2) - Permitting Others to Access a Mailbox

9/25/2013 9:19:03 PM
- Free product key for windows 10
- Free Product Key for Microsoft office 365
- Malwarebytes Premium 3.7.1 Serial Keys (LifeTime) 2019

Permitting Others to Access a Mailbox

Occasionally, users need to access someone else's mailbox, and in certain situations, you should allow this. For example, if John is Susan's manager and Susan is going on vacation, John might need access to her mailbox while she's away. Another situation in which someone might need access to another mailbox is when you've set up special-purpose mailboxes, such as a mailbox for or a mailbox for .

You can grant permissions for a mailbox in two ways:

  • You can grant access to a mailbox and its content.

  • You can grant the right to send messages as the mailbox owner.

If you want to grant access to a mailbox and its contents but not grant Send As permissions, use the Manage Full Access Permission Wizard. In the Exchange Management Console, right-click the mailbox you want to work with and then select Manage Full Access Permission. In the Manage Full Access Permission Wizard, click Add, and then use the Select User Or Group dialog box to choose the user or users who should have access to the mailbox. To revoke the authority to access the mailbox, select an existing user name in the Security Principal list box and then click Remove. Click Manage to set the desired access permissions.

If you want to grant Send As permissions, use the Manage Send As Permission Wizard. In the Exchange Management Console, right-click the mailbox you want to work with and then select Manage Send As Permission. In the Manage Send As Permission Wizard, click Add, and then use the Select Recipient dialog box to choose the user or users who should have this permission. To revoke this permission, select an existing user name in the Security Principal list box and then click Remove. Click Manage to set the desired Send As permissions.

In the Exchange Management Shell, you can use the Add-MailboxPermission and Remove-MailboxPermission cmdlets to manage full access permissions. Samples Example 1 and Example 2 show examples of using these cmdlets. In these examples, the AccessRights parameter is set to FullAccess to indicate you are setting full access permissions on the mailbox.

Example 1. Adding full access permissions

Syntax

Add-MailboxPermission -Identity UserBeingGrantedPermission
 -User UserWhoseMailboxIsBeingConfigured -AccessRights 'FullAccess'


Usage

Add-MailboxPermission -Identity
'CN=Jerry Orman,OU=Engineering,DC=cpandl,DC=com'
-User 'CPANDL\boba' -AccessRights 'FullAccess'

Example 2. Removing full access permissions

Syntax

Remove-MailboxPermission -Identity 'UserBeingGrantedPermission'
 -User 'UserWhoseMailboxIsBeingConfigured' -AccessRights 'FullAccess'
-InheritanceType 'All'


Usage

Remove-MailboxPermission -Identity 'CN=Jerry Orman,
OU=Engineering,DC=cpandl,DC=com'
 -User 'CPANDL\boba' -AccessRights 'FullAccess' -InheritanceType 'All'

If you want to allow another user to send messages as the mailbox owner, you can do this using the Manage Send As Permission Wizard. In the Exchange Management Console, right-click the mailbox you want to work with and then select Manage Send As Permission. In the Manage Send As Permission Wizard, click Add, and then use the Select User Or Group dialog box to choose the user or users who should have Send As permission on the mailbox. To revoke Send As permission, select an existing user name in the Security Principal list box and then click Remove. Click Manage to set the desired access permissions.

In the Exchange Management Shell, you can use the Add-ADPermission and Remove-ADPermission cmdlets to manage Send As permissions. Samples Example 3Example 4 show examples using these cmdlets. In these examples, the ExtendedRights parameter is set to Send-As to indicate you are setting Send As permissions on the mailbox. and

Example 3. Adding Send As permissions

Syntax

Add-ADPermission -Identity UserBeingGrantedPermission
-User UserWhoseMailboxIsBeingConfigured -ExtendedRights 'Send-As'


Usage

Add-ADPermission -Identity 'CN=Jerry
Orman,OU=Engineering,DC=cpandl,DC=com'
-User 'CPANDL\boba' -ExtendedRights  'Send-As'

Example 4. Removing Send As permissions

Syntax

Remove-ADPermission -Identity UserBeingRevokedPermission
-User UserWhoseMailboxIsBeingConfigured -ExtendedRights 'Send-As'
-InheritanceType 'All' -ChildObjectTypes $null
-InheritedObjectType $null -Properties $null


Usage

Remove-ADPermission -Identity 'CN=Jerry
Orman,OU=Engineering, DC=cpandl,DC=com'
 -User 'CPANDL\boba' -ExtendedRights 'Send-As' -InheritanceType 'All'
-ChildObjectTypes $null -InheritedObjectTypes $null
-Properties $null

Note

Another way to grant access permissions to mailboxes is to do so through Outlook. Using Outlook, you have more granular control over permissions. You can allow a user to log on as the mailbox owner, delegate mailbox access, and grant various levels of access.

Forwarding E-Mail to a New Address

Except when rights management prevents it, any messages sent to a user's mailbox can be forwarded to another recipient. This recipient can be another user or a mail-enabled contact. You can also specify that messages should be delivered to both the forwarding address and the current mailbox.

To configure mail forwarding, follow these steps:

  1. Open the Properties dialog box for the mailbox-enabled user account by double-clicking the user name in the Exchange Management Console.

  2. On the Mail Flow Settings tab, double-click Delivery Options.

  3. To remove forwarding, in the Forwarding Address panel, clear the Forward To check box.

  4. To add forwarding, select the Forward To check box and then click Browse. Use the Select Recipient dialog box to choose the alternate recipient.

  5. If messages should go to both the alternate recipient and the current mailbox owner, select the Deliver Messages To Both Forwarding Address And Mailbox check box. (See Figure 3.) Click OK.

Using the Delivery Options dialog box, you can specify alternate recipients for mailboxes and deliver mail to the current mailbox as well.

Figure 3. Using the Delivery Options dialog box, you can specify alternate recipients for mailboxes and deliver mail to the current mailbox as well.

Setting Storage Restrictions on an Individual Mailbox

You can set storage restrictions on multiple mailboxes using global settings for each mailbox database or on individual mailboxes using per-user restrictions. Global restrictions are applied when you create a mailbox and are reapplied when you define new global storage restrictions. Per-user storage restrictions are set individually for each mailbox and override the global default settings.

Note

Storage restrictions apply only to mailboxes stored on the server. They don't apply to personal folders. Personal folders are stored on the user's computer.

You set individual storage restrictions by completing the following steps:

  1. Open the Properties dialog box for the mailbox-enabled user account by double-clicking the user name in the Exchange Management Console.

  2. On the Mailbox Settings tab, double-click Storage Quotas. This displays the Storage Quotas dialog box, shown in Figure 4.

    Using the Storage Quotas dialog box, you can specify storage limits and deleted item retention on a per-user basis when necessary.

    Figure 4. Using the Storage Quotas dialog box, you can specify storage limits and deleted item retention on a per-user basis when necessary.

  3. To set mailbox storage limits, in the Storage Quotas panel, clear the Use Mailbox Database Defaults check box. Then set one or more of the following storage limits:

    • Issue Warning At (MB) This limit specifies the size, in megabytes, that a mailbox can reach before a warning is issued to the user. The warning tells the user to clean out the mailbox.

    • Prohibit Send At (MB) This limit specifies the size, in megabytes, that a mailbox can reach before the user is prohibited from sending any new mail. The restriction ends when the user clears out the mailbox and the mailbox size is under the limit.

    • Prohibit Send And Receive At (MB) This limit specifies the size, in megabytes, that a mailbox can reach before the user is prohibited from sending and receiving mail. The restriction ends when the user clears out the mailbox and the mailbox size is under the limit.

    Caution

    Prohibiting send and receive might cause the user to think they've lost e-mail. When someone sends a message to a user who is prohibited from receiving messages, an NDR is generated and delivered to the sender. The original recipient never sees the e-mail. Because of this, you should rarely prohibit send and receive.

  4. Click OK twice.

Setting Deleted Item Retention Time on Individual Mailboxes

Normally, when a user deletes a message in Microsoft Office Outlook, the message is placed in the Deleted Items folder. The message remains in the Deleted Items folder until the user deletes it manually or allows Outlook to clear out the Deleted Items folder. With personal folders, the message is then permanently deleted and you can't restore it. With server-based mailboxes, the message isn't actually deleted from the Exchange database. Instead, the message is marked as hidden and kept for a specified period of time called the deleted item retention period.

Note

The standard processes can be modified in several different ways. A user could press Shift+Delete to bypass Deleted Items. As an administrator, you can create and apply policies that prevent users from deleting items (even if they try to use Shift+Delete). You can also configure policy to retain items indefinitely.

Default retention settings are configured for each mailbox database in the organization. You can change these settings, or override the settings on a per-user basis by completing these steps:

  1. Open the Properties dialog box for the mailbox-enabled user account by double-clicking the user name in the Exchange Management Console.

  2. On the Mailbox Settings tab, double-click Storage Quotas. This displays the Storage Quotas dialog box, shown previously in Figure 4.

  3. In the Deleted Item Retention panel, clear the Use Mailbox Database Defaults check box.

  4. In the Keep Deleted Items For (Days) text box, enter the number of days to retain deleted items. An average retention period is 14 days. If you set the retention period to 0 and aren't using policies that prevent deletion, messages aren't retained and can't be recovered. If you set the retention period to 0 but are using policies that prevent deletion, the messages are retained according to the established policies.

  5. You can also specify that deleted messages should not be permanently removed until the mailbox database has been backed up. This option ensures that the deleted items are archived into at least one backup set. Click OK twice.

Note

Deleted item retention is convenient because it allows the administrator the chance to salvage accidentally deleted e-mail without restoring a user's mailbox from backup. I strongly recommend that you enable this setting, either in the mailbox database or for individual mailboxes, and configure the retention period accordingly.
 
Others
 
- Exchange Server 2010 : Configuring Mailbox Delivery Restrictions, Permissions, and Storage Limits (part 1)
- Exchange Server 2010 : Moving Mailboxes (part 2) - Performing Online Mailbox Moves
- Exchange Server 2010 : Moving Mailboxes (part 1) - The Essentials
- Exchange Server 2010 : Managing Mailboxes: The Essentials
- Setting Up a Windows Home Server Website : Configuring a Website (part 2) - Setting the Default Content Page, Disabling Anonymous Access
- Setting Up a Windows Home Server Website : Configuring a Website (part 1) - Modifying the Website Bindings , Giving a Website Multiple Identities
- Setting Up a Windows Home Server Website : Creating a New Website (part 3) - Creating a New Website Using a Host Header
- Setting Up a Windows Home Server Website : Creating a New Website (part 2) - Creating a New Website Using a Different Port
- Setting Up a Windows Home Server Website : Creating a New Website (part 1) - Creating a New Website Using a Different IP Address
- Setting Up a Windows Home Server Website : Adding Folders and Files to the Default Website
 
 
Top 10
 
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 2) - Wireframes,Legends
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Finding containers and lists in Visio (part 1) - Swimlanes
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Formatting and sizing lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Adding shapes to lists
- Microsoft Visio 2013 : Adding Structure to Your Diagrams - Sizing containers
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 3) - The Other Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 2) - The Data Properties of a Control
- Microsoft Access 2010 : Control Properties and Why to Use Them (part 1) - The Format Properties of a Control
- Microsoft Access 2010 : Form Properties and Why Should You Use Them - Working with the Properties Window
- Microsoft Visio 2013 : Using the Organization Chart Wizard with new data
Technology FAQ
- Is possible to just to use a wireless router to extend wireless access to wireless access points?
- Ruby - Insert Struct to MySql
- how to find my Symantec pcAnywhere serial number
- About direct X / Open GL issue
- How to determine eclipse version?
- What SAN cert Exchange 2010 for UM, OA?
- How do I populate a SQL Express table from Excel file?
- code for express check out with Paypal.
- Problem with Templated User Control
- ShellExecute SW_HIDE
programming4us programming4us