Re: have to add user to local admin group
- From: "Nuevo" <imaneophyte@xxxxxxxxx>
- Date: Tue, 31 Jan 2006 13:52:27 -0500
I don't know the exact permissions you need but you are heading the right
direction by giving the user permissions to either the information store or
the database level. You do not need to give them send as/receive as
permissions because if you recall these are denied to domain admins and
enterprise admins but they can admin mailboxes.
Nue
"skip" <skip@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:FC76B74D-EFAC-437F-A06E-23D5EB149D82@xxxxxxxxxxxxxxxx
>I did delegate to the user "Exchange view only" and the user has full
>rights
> to the OU. The user can create user accounts in the OU and delete
> accounts,
> but the user cannot create user accounts or contacts in the OU that have
> an
> email address. The only way i got this to work was to add the user to the
> local admin group on the Exchange/DC/GC server. It seems that i need to
> grant
> this user elevated permissions in ESM to either the mailbox store or the
> server node. I really dont like giving more rights then are absoluelty
> necessary, and it looks like i may have to give the send as and recieve as
> rights to this user.
>
> "Nuevo" wrote:
>
>> I don't believe you are correct. In order to fully Administer an Exchange
>> server you do need to be a local admin but for your purpose you need only
>> make then a View Only Administrator and then grant any additional
>> Exchange
>> rights explicitly.
>>
>> Nue
>> "skip" <skip@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:C2B4A018-C470-44AE-9D4B-135A14D498C5@xxxxxxxxxxxxxxxx
>> > Hi all
>> >
>> > I am running Exchange 2003 sp2 on windows 2003 sp1. Everything is
>> > isntalled
>> > on one server, AD and Exchange are on a single server. I am faced with
>> > a
>> > troubling problem. I need to give rights to a user so they can add
>> > enabled contacts into an OU. I have given the use the delegated perms
>> > to
>> > do
>> > this, and they can add user to this OU no problem. I have also
>> > installed
>> > the
>> > Exchange admin tools and 2003 admins tools on the users machine. In
>> > order
>> > for
>> > the user to create contacts with an email address in the OU, I have to
>> > add
>> > this user to the local administrator group on the Exchange/DC server,
>> > and
>> > i
>> > really really dont want to do this. What alternatives do i have with
>> > this?
>> >
>> > Many thanks for a possible solution
>>
>>
>>
.
- Follow-Ups:
- Re: have to add user to local admin group
- From: skip
- Re: have to add user to local admin group
- References:
- Re: have to add user to local admin group
- From: Nuevo
- Re: have to add user to local admin group
- Prev by Date: Re: Outlook reminders
- Next by Date: Re: have to add user to local admin group
- Previous by thread: Re: have to add user to local admin group
- Next by thread: Re: have to add user to local admin group
- Index(es):
Relevant Pages
|
