Mailboxpermission issue
Hi, i need readonly mailbox-permission for other users when they open a other mailbox. Here my Exchange-Shell code: [PS] C:\>Add-MailboxPermission -Identity "test user" -Userexuser -AccessRights fullaccess -InheritanceType all Identity User AccessRights IsInherited Deny-------- ---- ------------ ----------- ----domain.de/Users/te... domain\exuser {FullAccess} False False [PS] C:\>Add-MailboxPermission -Identity "test user" -User exuser -deny -AccessRights deleteitem -InheritanceType all Identity User AccessRights IsInherited Deny-------- ---- ------------ ----------- ----domain.de/Users/te... domain\exuser {DeleteItem} False True [PS] C:\>Get-MailboxPermission -Identity "test user" -User exuser | fl AccessRights : {DeleteItem}Deny : TrueInheritanceType : AllUser : domain\exuserIdentity : domain.de/Users/test userIsInherited : FalseIsValid : TrueObjectState : Unchanged AccessRights : {FullAccess}Deny : FalseInheritanceType : AllUser : domain\exuserIdentity : domain.de/Users/test userIsInherited : FalseIsValid : TrueObjectState : Unchanged This works generaly but only at the mailbox and not to my folders (inbox... ect) I cannot delete a folder i createt directly under the mailbox. But i can still delete objects in inbox, outbox.... I set "-InheritanceType all" so why stays "IsInherited : False" ?? Thanks Sebastian
July 23rd, 2008 9:30am

Hello Sebastian, IsInherited will show true when you check permissions of subfolders or subitems of any parent item where you have given inheritancetype all. When you check permission which you have given with InheritanceType all on parent item (in your case on test user and Full access permission) it doesnt show because it is not inherited from its parent item (eg. mailbox database). But in Mailbox it is different, Mailbox permission stores at mailbox level in database but subfolders inside mailbox (inbox, sent times, outbox etc) permission stores at folder level inside mailbox and add-mailboxpermission cmdlet can not access folder level permission. I guess What you are trying with add-mailboxpermission is not possible. You may try by giving permission at folder level in outlook or with PFDavAdmin.
Free Windows Admin Tool Kit Click here and download it now
July 23rd, 2008 6:55pm

Hello Amit, well to logon as each user and set the permissions is damn mutch work. Is there no way to set the permissions central over the shell??? PFDavAdmin would be better but this tool works only in 20% of the enviroments i testet it without errors. So i cant use it. Thanks
July 24th, 2008 5:32pm

No other solution for my problem? Thanks Sebastian
Free Windows Admin Tool Kit Click here and download it now
July 28th, 2008 5:10pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics