How To Quickly Figure Out Who Can Do What in a Microsoft Exchange Organization

Summary: This article was contributed by Mohammed Abdul Rafey, a Premier Field Engineer based in Bangalore, India.  He shows us how to take advantage of scripting to quickly zero in on who has the ability to do what in an Exchange organization. In Exchange 2010 and above, permissions are granted based on role group membership…


How to Create Custom Recipient Management Groups Using Exchange 2010 RBAC

Article written by Matt Abraham, Premier Field Engineer. My customer wanted to assign the "Recipient Management" group to their helpdesk staff, who are responsible for the creation and management of their Exchange mailboxes. However, they didn’t want to give the "Delete" permissions to the helpdesk. This is simple to accomplish using Microsoft Exchange 2010 and…


Securing MS Exchange 2010: Role Based Access Control (RBAC) Simplified

Written by Samuel Drey, a Premier Field Engineer based in Canada. 1. An introduction to the RBAC permissions model Exchange 2010 introduces a brand new permissions model named “RBAC”, meaning Role Based Access Control.  There’s plenty of documentation about RBAC since this is a new and important feature of Exchange 2010, but I did not…