Re: Restrict calendar views

Tech-Archive recommends: Fix windows errors by optimizing your registry

Were you able to verify if there were any other permissions set on the
folder ie default, anonymous etc? Keep in mind that public folders are
based on least restrictive and are cumulative.

James Chong

Paul Walker wrote:
Ed,

I am onsite laster in the week so I can take a closer look.
Authenticated users have Full mailbox rights ticked and greyed out
and deny ticked as well.Anon Logon have the smae and the administrator
account is the same. However the admin does have read enabled and not
on deny. Your comment on everybody being an admin. There was a server
based package that was installed about a month ago. I heard the
installer had some issues with the client side. I wonder if he has
given users administrator rights to the domain in USERS in Computer
Management. I will find out on Thursday.

Thanks

Paul.














On Mon, 23 Oct 2006 10:22:45 -0700, "Ed Crowley [MVP]"
<curspice@xxxxxxxxxxxxxx> wrote:

In the folder rights, no account needs to be present in the list if it
doesn't have rights. There's no "deny" there, so just remove the accounts
that you don't want to have rights. What do Default and Anonymous have?

In Mailbox Rights, the right that matters for what you're seeing is "Full
mailbox access". If nobody but SELF has "Full mailbox access" than nobody
but the owning account gets rights through mailbox ownership. You didn't
report this, but by default "Domain admins", "Enterprise admins" and the
admin account that installed Exchange has an explicit Deny on "Full mailbox
access". If you aren't seeing that, then someone has mucked with your
permissions. Is everyone an administrator in your organization? That would
not be a good thing.

.

Quantcast