My company is migrating messaging infrastructure from exchange 2003 to exchange 2007. I need to identify resource mailbox in exchange 2003 and their access control list. Can anybody help me to do that.? Exchange Admin

Hi,Generally there is no tag to identify resource mailbox in exchange 2003 as resource mailbox is conciderd as general mailbox in E2k3.But in E2k7 its got a group type and AD account associated with resource mailbox will be disable.If you have defined any custome attribute for resource then you can search from Advanced search.Might be some one from MS can help you more.Anil

I agree with Anil. There isnt any such tag that can distinguish a mailbox as a resource mailbox seperately. You will have to manually identify the these mailboxes from your exchagne organization and then convert them to room or equipment or any other type in exchange 2007 during the migration.MMilind Naphade | MCTS:M | http://www.msexchangegeek.com

You could try using something like PFDavAdmin to try and dump the permissions of the mailbox out to a file and see who has access to a specific mailbox. Mark Morowczynski|MCSE 2003:Messaging, Security|MCITP:ES, SA|MCTS:Windows Mobile Admin|Security+|http://almostdailytech.com

Do you have any Exchange 2007 server installed in your environment? If so, you can use Powershell Get-AdPermissions/Get-MailboxPermission cmdlet to dump ACL list of Exchange 2003 mailbox... If in Exchange 2003 resources mailboxes are disabled then those should have Self Associated External Account mailbox permission set so you can dump all such mailboxes with below cmdlet.... Get-MailboxPermission| where { ($_.AccessRights -like "*ExternalAccount*")} | FL Amit Tank | MVP - Exchange | MCITP:EMA MCSA:M | http://ExchangeShare.WordPress.com

Okay, as far as mailboxes are in question I would recommend going with ADModify.net in stead of going with anything else. You can simply expor the mailbox ADLs into an XML file which can later be formatted in Microsoft Excel... Excel does allow data import from XML files. MMilind Naphade | MCTS:M | http://www.msexchangegeek.com

Yes I agree Milind, but in that case Swapnikteneeds to look for an LDAP filter which identifies the resource mailboxes from whole AD. Amit Tank | MVP - Exchange | MCITP:EMA MCSA:M | http://ExchangeShare.WordPress.com

ThanksAmit,thanks for your comments ..... but The term Resource Mailboxes has been used incorrectly we actually have a mix of actual Resource Mailboxes (conference rooms, etc) and Shared Mailboxes (mailboxes shared by multiple users with different level of access including Send As) and also these mailboxes are not in disabled state. Not all Resource Mailboxes use the event sink on North America servers it is only used for Telepresence mailboxes Challenge lies mostly with Shared Mailboxes need to identify owners for each, and determine whether they are actively used (we do not want to migrate inactive mailboxes) total mailboxes are more than 6000 and located at different location. how do i achive this? Exchange Admin

Well, I guess you need to do this task manually. Export mailbox permission with ADModify.net as Milind mentioned to CSV file, filter resource mailboxes manually since there isn't any identification of resource/shared mailboxes to differentiate. Moreover you need to find inactive mailboxes you need to contact owners of mailboxes to find their usage also...Amit Tank | MVP - Exchange | MCITP:EMA MCSA:M | http://ExchangeShare.WordPress.com

Hi ...thanxs for ur support ..i found a poershell commad to find the permission on mailboxes:for full access : [PS] C:\Windows\System32>Get-Mailbox -ResultSize Unlimited | Get-mailboxPermission | where { ($_.accessRights -eq "fullaccess") -and ($_.IsInherited -eq $false) -and -not ($_.User -like "NT AUTHORITY\SELF") -and -not ($_.User -like "VSNL\panaroma") } | Select Identity, User, Deny | Export-CSV c:\test.csvExport-CSVfor send as [PS] C:\Windows\System32>Get-Mailbox -ResultSize Unlimited | Get-ADPermission |where { ($_.ExtendedRights -like "*Send-As*") -and ($_.IsInherited -eq $false) -and -not ($_.User -like "NT AUTHORITY\SELF") -and -not ($_.User -like "VSNL\panaroma") } | Select Identity, User, Deny | Export-CSV c:\test.csvExchange Admin