Any outlook client on my network can open another persons folder on exchange, like inbox, calendar or contacts. How can I prevent this and lock each mailbox down to only the owners account? All my mailboxes were created and assigned to an NT Account. Why is this breach possible??
This conversation is currently closed to new comments.
What are that account's rights? If the accounts have any kind of admin priv's, you will be able to see anyone's mailbox. Check all groups and user rights.
I would agree with the previous posts that it is probably a priv setting issue. What I have done with my exchange server, is set up two domain groups; Exchange Admins and Exchange Users. You add your users (or just the Domain Users group if you wish) to this group. Best policy when setting permissions is to set permission by a group, not individually. Setting it individually is an administrative nightmare. After you have set up your groups go through and grant permissions as needed. My permissions are set so that only the Backup Agent, Exchange Admins group, and Site Services account have defined permissions. The only folder that Exchange Users have anything set for is the Address View folder, and that is set to Search only (This cleans up the address book drop down list).
Feel free to email me for me info, Scott Geiger Systems Admininstrator Binghamton University geigers@binghamton.edu
If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.
Mailbox security