RE: Send As permissions getting overwritten

Hello Andrew,

Thank you for posting in the SBS newsgroup.

According to your description, I understand that the "send as" permissions
be overwrote for some reasons. If I have misunderstood your concern, please
don't hesitate to let me know.

To narrow down this issue, please answer and perform the following
questions and steps:

1. As you mentioned, the Send As permissions that you set for User B are
completely wiped out. Can you describe the exact symptoms of the issue?
Please paste the error message you encountered in your reply.

2. Please refer to the KB article 327000 to re-create some testing user
accounts, and try again. Please check if the issue can be re-produced.

3. Based on my knowledge, the "Send As" permission is an
Exchange-extended permission. So, AD will not cause such a problem. Also,
Exchange server actually will not automatically change the permissions on
an individual user account. Therefore, I would first suggest you
temporarily remove the third-party Anti-Virus software or other
applications and monitor the issue again.

4. If the problem appears again, I would suggest you enable auditing so
that we can find out which account or process changes the send as
permissions.

NOTE: Turning on auditing can have a major impact on service and server
performance.

Step 1:
-----------
Please enable auditing on the Exchange Server that hosts the mailboxes you
want to monitor. To do so, please follow these steps:

1. Log on to Exchange Server by using a domain admin user account.

2. Click Start, point to All Programs->Administrative Tools-> Domain
controller Security Policy.

3. Under "\Security Settings\Local Policies\Audit Policy", please double
click on "Audit object access" and check "Define these policy settings" and
check both "Success" and "Failure".

4. Click OK to save the settings.

5. Please double click on "Audit logon events" and check "Define these
policy settings" and check both "Success" and "Failure".

6. Click OK to save the settings.

Note: You may need to wait for a while to ensure the policy was applied to
Exchange Server.

Step 2:
-----------
Add auditing to the mailbox store via Exchange System Manager. To do so,
please follow these steps:

1. Open ADUC

2. Navigate to problematic user account, right click on it and click
Properties.

3. On the Security page, click on the "Advanced" button.

4. On the Auditing tab, please click Add and type "everyone" (without
quotation marks), and then click OK.

5. On the "Auditing Entry for" dialog box, please choose "This object,
subcontainers, and children objects" in the "Apply onto" list.

6. You can check all check boxes in the "Access" list. (Successful and
Failed).

Step 3:
-----------
Now, please reboot your Exchange Sever and then start Event Viewer and in
the Security node, check if there are related auditing events are logged as
expected.


I appreciate your taking the time to perform the tests, if you have any
issues or concerns please let me know. I am glad to be of further help.

Best regards,

Nathan Liu (MSFT)
Microsoft CSS Online Newsgroup Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
>Thread-Topic: Send As permissions getting overwritten
>thread-index: AcWC7M2gO7HjQlzRQzakTUp9rCkniQ==
>X-WBNR-Posting-Host: 68.167.34.42
>From: =?Utf-8?B?QW5kcmV3IENvaGVu?= <AndrewCohen@xxxxxxxxxxxxxxxxxxxxxxxxx>
>Subject: Send As permissions getting overwritten
>Date: Thu, 7 Jul 2005 05:10:02 -0700
>Lines: 8
>Message-ID: <F208199A-B6ED-41F2-81B9-FBEFBAB650BC@xxxxxxxxxxxxx>
>MIME-Version: 1.0
>Content-Type: text/plain;
> charset="Utf-8"
>Content-Transfer-Encoding: 7bit
>X-Newsreader: Microsoft CDO for Windows 2000
>Content-Class: urn:content-classes:message
>Importance: normal
>Priority: normal
>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
>Newsgroups: microsoft.public.windows.server.sbs
>NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.2.250
>Path: TK2MSFTNGXA01.phx.gbl!TK2MSFTNGXA02.phx.gbl!TK2MSFTNGXA03.phx.gbl
>Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.windows.server.sbs:133761
>X-Tomcat-NG: microsoft.public.windows.server.sbs
>
> I'm trying to setup User A to have the ability to Send As (not on behalf
of)
>User B. When I implement the directions as specified in MS KB327000
>(http://support.microsoft.com/default.aspx?scid=kb;en-us;327000), I'm able
to
>get it to work for a little while. However, after about 2 hours or so,
the
>Send As permissions that I set for User B are completely wiped out. My
guess
>is that there's some kind of recipient or user policy that is overwriting
the
>change that I make. I am however unable to figure out how to change this
if
>in fact that's what's happening. Any ideas?
>

.

Loading