I am running Exchange 2003. I need to setup a mailbox recipient policy to delete deleted items over a certain age. I would like to apply this policy to a test group of users before I set it for all users. I have created a securit group and put the users I want in this group. I created the policy and pointed it to the group. When I ran the policy nothing happened. When I go back and click on the find now button in the policy it shows the group but not the members. I did not specify to have a summary sent to my self when I ran the policy. I have now done that but have to wait for the next maintenance period to test it. Is it possible to use a group in this way? It seems like it should work. Any help would be appreciated. Thanks, Jrussell97

I"ll have to check my Exchange 2003 info later; but, you first have to apply the policy to the mailbox servers: http://support.microsoft.com/kb/319188TBrennan

see this, http://support.microsoft.com/kb/319188 put users into the grouo or use another filter for the users Sukh

Yes. You can use Filter rules and select certain group you want to apply the recipient policy. As an additional information, please refer to the following article: http://blogs.technet.com/b/exchange/archive/2005/03/21/399807.aspx Thanks. Novak Wu TechNet Subscriber Support in forum If you have any feedback on our support, please contact tngfb@microsoft.com Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Thanks for your input. I had already read KB 319188. I have also now read the Blog suggested by Novak Wu. I still am unable to get the group members to display when I do a find now. The blog suggests that I will need to build an LDAP query to make this filter. I have no idea how to construct this query. My group is located in the OU Corporate. The domain name is MyDomain.local. The group name is DeleteDeletedItems. Could someone help me with the LDAP Query? Thanks, jrussell97

(memberOf=CN=DeleteDeletedItems,OU=xxxxxx,OU=xxxxx,DC=something,DC=ad,DC=local,DC=com) something like this for the LDAPSukh

That query did not work. This query will show me the members if I specify * as the value. (&(&(&(& (mailnickname=*) (| (&(objectCategory=person)(objectClass=user)(!(homeMDB=*))(!(msExchHomeServerName=*)))(&(objectCategory=person)(objectClass=user)(|(homeMDB=*)(msExchHomeServerName=*)))(&(objectCategory=person)(objectClass=contact))(objectCategory=group)(objectCategory=publicFolder)(objectCategory=msExchDynamicDistributionList) )))(objectCategory=user)(memberOf=*))) But if I then substitute the actual group name in the member of section it will not find anything.

are you using the full path as I have shown above or just specifying the actual name DeleteDeletedItemsSukh

I was just putting in the name of the group. I tried to put in the full path and it created a query too long for the window so i was not able to enter it or paste it. I then created a custom search which generated a shorter query of (&(objectCategory=group)(cn=*)) This will find the recipients just like the longer one. When I put the full path to the directory it does not find anything, not even the group. The short query with the full path is this (&(objectCategory=group)(CN=DeleteDeletedItems,OU=Corporate,DC=Communityone,DC=Local))

I've created a group and put the users in this group. Then used a custom search when creating the policy and selected the advanced tab. Then I put my query in below. Then I click find and it finds all users who are a memeber of this group. Not sure how you're doing this and it seems liek you using a group rather than memberOf. (memberOf=CN=DeleteDeletedItems,OU=xxxxxx,OU=xxxxx,DC=something,DC=ad,DC=local,DC=com)Sukh

I have tried this many different ways. The only way that I can get it to show the users is to use custome search select users, select member of, and then put * in the value field. If i put anthing else ibn the value field it does not find the users. I have tried using Group instead of user. It will the find the group but will not show the members. I have also tried the approach that you suggested and just put the query directly in the filter box I honestly do not know what to do at this point. I only want this as a test. Once I prove the concept I will apply it to all users. I may have to put in a seperate policy for each user that I want to test. Thanks for all the help so far.

when doing the custom search dont select users, there should be another tab called advanced, put the ldap query in there.Sukh

I have tried that. If i cut the query that is created by selecting user and then clear everything out and paste it back in by selecting the advanced tab it will work. If I try to change it at all it will not work. This one works (&(objectCategory=group)(cn=*)) This one does not (memberOf=CN=DeleteDeletedItems,OU=Corporate,DC=ad,DC=local,DC=com) This one does not either (memberOf=CN=DeleteDeletedItems,OU=Corporate,DC=local) The FQDN of the domain is Communityone.local the dn of the group is cn=DeleteDeletedUsers,dc=Corporate,dc=Communityone,dc=local

when you create the mailbox manager policy, give it aa anem and then select modfy>in the find drop down select custom>then the advanced tab and put the query in here. When I do this, all options are slected, it then find users members in that group. are you sure that the users that you want to target are in that group too?Sukh

That is the way that i have been putting the queries in. The users are members of the group. I think that I am going to build several policies one for each user that I want to test Thanks for all of your help. jrussell97

Hi, What’s the result after building several policies? Does it work now? If there is any progress or question, please feel free to post it here to discuss. Thanks. Novak Wu TechNet Subscriber Support in forum If you have any feedback on our support, please contact tngfb@microsoft.com Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Thanks for all of your help. I was able to build several different policies, one for each user that I wanted to target. I was able to prove the concept worked and will soon be setting a policy to apply to all recipients. We can mark this as closed. Thanks jrussell97