Hi, I have just taken over from a previous exchange admin who gave a whole lot of users permissions to view other users mailboxes. I have been requested to lock down the environment and reset everyone's mailbox permissions to default so that any user can only see his/her own mailbox. Does anyone have an idea how I might go about doing that? Thanks in advance Me

Hi This command will list all non-inherited permissions for all mailboxes: get-mailbox | Get-MailboxPermission | ? {$_.IsInherited -eq $false -and $_.User -notlike "*SELF"} | fl identity,user,accessrights,isinherited To remove these permissions you can do something like this: $mailbox = get-mailbox | Get-MailboxPermission | ? {$_.IsInherited -eq $false -and $_.User -notlike "*SELF"} foreach ($user in $mailbox) {Remove-MailboxPermission $user.identity -User $user.User -AccessRights $user.AccessRights} Note: This should be run with care as all non-inherited permissions will be removed Cheers, Steve

Hi This command will list all non-inherited permissions for all mailboxes: get-mailbox | Get-MailboxPermission | ? {$_.IsInherited -eq $false -and $_.User -notlike "*SELF"} | fl identity,user,accessrights,isinherited To remove these permissions you can do something like this: $mailbox = get-mailbox | Get-MailboxPermission | ? {$_.IsInherited -eq $false -and $_.User -notlike "*SELF"} foreach ($user in $mailbox) {Remove-MailboxPermission $user.identity -User $user.User -AccessRights $user.AccessRights} Note: This should be run with care as all non-inherited permissions will be removed Cheers, Steve