• State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 61 subscribers
  • Views 2657 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Rights needed to remove leavers' Exchange mail box

broy32000
over 8 years ago

Hi,

  I want my help desk admins to remove exchange mail boxes. What rights do I need to grant for that?

  Also is there any way to check which disabled users' mail box is alive?

Thanks

Parents
  • 0 over 8 years ago

    Are you asking how to delegate in ARS or what rights the service account needs?  If you want to delegate this right in ARS but not other rights then create a new access template in

    CN=Access Templates,CN=Configuration


    and nest the Exchange rights out of the box from here


    CN=Exchange,CN=Access Templates,CN=Configuration

    Alternatively look at the permissions in the built in templates and use this to create your own custom rights.


    The advanced options lets you built almost any template you use from just allowing create mailbox to just delete mailbox.


    For the other question you'll need to use the Exchange Cmdlets to interrogate AD.  This is pretty standard Exchange Management so there will be lots of examples on the internet for you to Google.

Reply
  • 0 over 8 years ago

    Are you asking how to delegate in ARS or what rights the service account needs?  If you want to delegate this right in ARS but not other rights then create a new access template in

    CN=Access Templates,CN=Configuration


    and nest the Exchange rights out of the box from here


    CN=Exchange,CN=Access Templates,CN=Configuration

    Alternatively look at the permissions in the built in templates and use this to create your own custom rights.


    The advanced options lets you built almost any template you use from just allowing create mailbox to just delete mailbox.


    For the other question you'll need to use the Exchange Cmdlets to interrogate AD.  This is pretty standard Exchange Management so there will be lots of examples on the internet for you to Google.

Children
No Data