Re: Can't delegate/share to a group

From: Glen Trafford (glen_at_beehivesystems.com)
Date: 08/28/04

• Next message: Admin: "Re: outlook blocked access"
• Previous message: JV: "Re: Exchange Backup using NTBackup Fails"
• In reply to: JoeM: "Can't delegate/share to a group"
• Next in thread: JoeM: "Re: Can't delegate/share to a group"
• Reply: JoeM: "Re: Can't delegate/share to a group"
• Messages sorted by: [ date ] [ thread ]

Date: Sat, 28 Aug 2004 16:26:00 +1000

Try changing the Distribution group to a security group. This will still
allow it work as a DL.

Cheers

Glen

"JoeM" <labyzs302@NOsneakSPAMemail.com> wrote in message
news:zrLXc.341$w%6.231@newsread1.news.pas.earthlink.net...
> I am running Exchange 2000 SP3 on SBS 2000 on a network with one server
box.
> When I try to add a distribution group delegate to a mailbox through
Outlook
> 2002 on a Windows XP SP1 machine, it fails with no message. I can add the
> group, but it always set the permissions to none.
>
> When I try to share a folder to a group I get the error "The modified
> permissions could not be saved. The client operation failed".
>
> I can delegate and share to users.
>
> I am guessing its either some permissions problem or an Exchange
corruption,
> but I am not making any headway. I have not been able to find anything
very
> helpful in the NGs or via Goggle searches. Help!
>
> When I first encountered the problem, E2k was running in mixed mode
> (default, not brains). I found that this should only work in native mode.
I
> switched Exchange to native mode via the properties page. I saw no
complaint
> on screen or in logs when I switched. I restarted the whole server for
good
> measure. Exchange's General Properties now shows Native mode, but the two
> administrative views options can be checked. I thought the "Display
> administrative groups" option was supposed to be grayed out. The
> distribution groups existed prior to the mode switch.
>
> Dithered Security Log entries follow. This attempt was from a workstation
> outside the domain logged in to the SpamBox mailbox over a VPN. The
behavior
> is similar when the delegation is attempted from a workstation in the
> domain.
>
> Thanks,
>
> Joe M
>
> --------
>
> Event Type: Success Audit
> Event Source: Security
> Event Category: Logon/Logoff
> Event ID: 540
> Date: 8/27/2004
> Time: 9:43:29 AM
> User: SMITHINVESTMENT\SpamBox
> Computer: SMITH-SBS
> Description:
> Successful Network Logon:
> User Name: SpamBox
> Domain: SMITHINVESTMENT
> Logon ID: (0x0,0x9E1416)
> Logon Type: 3
> Logon Process: NtLmSsp
> Authentication Package: NTLM
> Workstation Name: MYBOX
>
> --------
>
> Event Type: Failure Audit
> Event Source: Security
> Event Category: Object Access
> Event ID: 565
> Date: 8/27/2004
> Time: 9:43:29 AM
> User: SMITHINVESTMENT\SpamBox
> Computer: SMITH-SBS
> Description:
> Object Open:
> Object Server: Microsoft Exchange
> Object Type: Microsoft Exchange Logon
> Object Name: /o=SMITHINVESTMENT/ou=first administrative
> group/cn=Recipients/cn=SpamBox
> New Handle ID: -
> Operation ID: {0,10359850}
> Process ID: 4384
> Primary User Name: SMITH-SBS$
> Primary Domain: SMITHINVESTMENT
> Primary Logon ID: (0x0,0x3E7)
> Client User Name: SpamBox
> Client Domain: SMITHINVESTMENT
> Client Logon ID: (0x0,0x9D55A4)
> Accesses Unknown specific access (bit 8)
>
> Privileges -
>
> Properties:
> Unknown specific access (bit 2)
> Unknown specific access (bit 3)
> Unknown specific access (bit 4)
> Send As
>
> --------
>
> Event Type: Failure Audit
> Event Source: Security
> Event Category: Directory Service Access
> Event ID: 565
> Date: 8/27/2004
> Time: 9:45:02 AM
> User: SMITHINVESTMENT\SpamBox
> Computer: SMITH-SBS
> Description:
> Object Open:
> Object Server: DS
> Object Type: user
> Object Name: CN=SpamBox,CN=Users,DC=smithinvestments,DC=local
> New Handle ID: -
> Operation ID: {0,10381668}
> Process ID: 292
> Primary User Name: SMITH-SBS$
> Primary Domain: SMITHINVESTMENT
> Primary Logon ID: (0x0,0x3E7)
> Client User Name: SpamBox
> Client Domain: SMITHINVESTMENT
> Client Logon ID: (0x0,0x9E138D)
> Accesses Write Property
>
> Privileges -
>
> Properties:
> WRITE_DAC
> WRITE_OWNER
> SYNCHRONIZE
> Delete Child
> Read Property
> Write Property
> Personal Information
> WRITE_DAC
> SYNCHRONIZE
> publicDelegates
>
>
> Event Type: Failure Audit
> Event Source: Security
> Event Category: Directory Service Access
> Event ID: 565
> Date: 8/27/2004
> Time: 9:45:02 AM
> User: SMITHINVESTMENT\SpamBox
> Computer: SMITH-SBS
> Description:
> Object Open:
> Object Server: DS
> Object Type: user
> Object Name: CN=SpamBox,CN=Users,DC=smithinvestments,DC=local
> New Handle ID: -
> Operation ID: {0,10381669}
> Process ID: 292
> Primary User Name: SMITH-SBS$
> Primary Domain: SMITHINVESTMENT
> Primary Logon ID: (0x0,0x3E7)
> Client User Name: SpamBox
> Client Domain: SMITHINVESTMENT
> Client Logon ID: (0x0,0x9E138D)
> Accesses Write Self
>
> Privileges -
>
> Properties:
> WRITE_DAC
> WRITE_OWNER
> SYNCHRONIZE
> Delete Child
> Read Property
> Write Property
> Personal Information
> WRITE_DAC
> SYNCHRONIZE
> publicDelegates
>
>
>

• Next message: Admin: "Re: outlook blocked access"
• Previous message: JV: "Re: Exchange Backup using NTBackup Fails"
• In reply to: JoeM: "Can't delegate/share to a group"
• Next in thread: JoeM: "Re: Can't delegate/share to a group"
• Reply: JoeM: "Re: Can't delegate/share to a group"
• Messages sorted by: [ date ] [ thread ]

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint