Outlook 2003 Folder Security

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Hi.

I have a client running Windows Server 2000 with Exchange 2000. Desktop
systems are running Windows XP Pro sp/2 and Office 2003. My problem is that
Outlook 2003 ignores folder sharing security settings. Even if I configure a
folder to not allow anyone but the user of the account, anyone who wants to
can pull up that persons Inbox, Calendar and everything else from another
workstation running Outlook 2003. This was not a problem when we had Outlook
2000. I have reviewed every configuration setting I can think of in Outlook
and to be honest, I'm at a loss as to how to prevent this behavior. Has
anyone else run into this issue?

Thanks!
 
Yes and in the cases I have seen it has ended up being a security
configuration problem within Active Directory. For example, the site tried
to delegate out rights in Active Directory to allow staff to do things and
they ended up giving away too much.
 
neo said:
Yes and in the cases I have seen it has ended up being a security
configuration problem within Active Directory. For example, the site tried
to delegate out rights in Active Directory to allow staff to do things and
they ended up giving away too much.
Click to expand...
Hi Neo,

I checked and the user base does not have excessive rights within Active
Directory. The only Administrators are myself and the company owner. All
other users have nothing more than basic User Rights. All local
policies/user rights are at default. Therefore, I do not believe this is a
Rights issue, unless I am missing something.

Any other possibilities? Anyone?
 
neo said:
Yes and in the cases I have seen it has ended up being a security
configuration problem within Active Directory. For example, the site tried
to delegate out rights in Active Directory to allow staff to do things and
they ended up giving away too much.
Click to expand...
OK, I spoke too soon. :-)

While checking permissions in Exchange System Manager for the server in
question, I found that both Authenticated Users and one of our general user
groups both have Full Rights to the server. Obviously, this is not a good
thing. The question is, how to remove them, and what should permissions at
that level be set to? Having inherited this network I've no idea what they
were thinking when the did this.

I found a kbase article explaining how to remove mailbox rights for an
individual user or group, but when you view permissions under the Exchange
Advanced tab for any given user it appears that those permission are also
inheritied. They appear to be the same as those listed for the Exchange
Server in Exchange System Manager.

Any guidance would be appreciated before I go stomping around and break
Exchange.

Thanks!
 
Open Exchange System Manager and then right click on "<sitename>
(Exchange)". Select Delegate Control and then next. A fresh install of an
AD domain/Exchange 2003 will only list the domain administrator account.
 
You must log in or register to reply here.

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Anyone Else Facing Public Folder Migration Errors in Exchange? 0
Outlook 2003 running on Vista 1
Issues moving outlook emails across folders 1
Outlook 2003 mail disappearing 2
Sharing an Outlook Folder 3
Group Permissions on Personal Folders 1
Outlook 2003 Sends Name of Computer? 6
Contacts in Folder List 3

Back
Top