Grant Mailbox Rights
- Login to a machine with the account that you want to use to make the setting changes. This machine needs to have Outlook installed, and preferably the Exchange System Manager tools.
- Start ADMODIFY and select the users that you want to change.
- Click Next and choose the tab “Mailbox Rights”.
- The setting you want to change is “Add User to Mailbox Rights”, enter the username of the account you are using in the format domain\username and select the option “Full Mailbox Rights”.
Start Setperm
- Setperm needs to be run from a command line, initially connecting to a specific mailbox.
Open a command prompt in the folder where you have extracted the setperm.exe utility. - Start the application using the following command:setperm /Mailbox:alias\servername
For example, if your mailbox is jsmith and the server is mail1 then you would enter:
setperm /Mailbox:jsmith\mail1
? - If you get an ActiveX error such as
“Run-time error ‘429’:
ActiveX component can’t create object ”
Then you haven’t registered the dll file correctly – repeat and try again. - Once you have brought up the box, adjust the permissions as required.
Setting the permissions: Your best option is to set the “Reviewer” permission to your equivalent to “All Staff”. Then set higher permissions on an individual or group basis. Don’t use the default setting – choose “Custom” and then select the group. - Select the mailboxes that you want to set these permissions on – you cannot use a group – but you can select all the mailboxes using the standard methods.
- Once satisfied, click “Set Permissions”.
The tool will now connect to each mailbox and set the permissions as required. Note that you can only do one set of permissions at a time – so if you want some users to have “Reviewer” and others to have higher permissions, you will need to run the tool again to set the alternative permissions.
Once the tool has finished, check the permissions are correct. You should then remove the rights to the mailbox that you granted to yourself.
Remove Mailbox Rights
You should remove the mailbox rights so that they are set as before. This is not only good practise from a security point of view, it also ensures that you do not come under suspicion of illicit mailbox access.
Repeat the process that you used to grant the mailbox rights. EXCEPT:
- Do not select the account you are using – otherwise you will lock yourself out of the mailbox.
- Select the option to remove the full mailbox rights.