Membership in Admin groups resets Send As permissions - Blackberry's broken for administrators
- From: "John D. Gwinner" <JohnDOTgwinner@xxxxxxxxxxx>
- Date: Thu, 8 Jun 2006 15:28:58 -0700
Ok, this is an odd one.
Blackberry Enterprise Server (BES 4.0, SP4, HF 3, i.e. version 4.0.4.5)
Exchange 2003, SP2, 2003 native mode domain.
Using the script in http://support.microsoft.com/kb/912918/en-us (KB Article
912918) per the latest security patch, I attempted to set the 'send as'
permission.
Everyone works but 4 people. I removed 2 of the people from administrative
groups, and the script works.
What happens is that about 5-10 minutes after I grant the Blackberry service
accounts permission to 'send as' ... they revert to not having 'send as'
permission.
The other, non admistrator, users work fine.
I called Blackberry support, and they said that Microsoft had 'hard coded'
it so that Administrators CANNOT use Blackberry's. Apparently
administrators will no longer be able to have another account have 'send as'
authority.
Obviously, one possible 'best practice' is to remove my 'normal' account
from admin groups and have a second account used only for administration,
but NOTHING should remove a permission I have explicitly set without some
kind of warning.
Also, this basically forces any admin to have 2 accounts, otherwise they
won't get notifications about critical events, given that their blackberry's
are non operational with administrator accounts.
Now I'll be typing my password 100's of times a day.
It's extremely frustrating to me that this 'feature' is being jammed down
our throats.
Thoughts?
== John ==
.
- Follow-Ups:
- Prev by Date: Only sync calendar
- Next by Date: Re: OWA denying access to all users even administrator!
- Previous by thread: Only sync calendar
- Next by thread: Re: Membership in Admin groups resets Send As permissions - Blackberry's broken for administrators
- Index(es):
Relevant Pages
|
Loading
