Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. HOW TO: Check and Countercheck Security-Related Information in Exchange System Manager in Exchange 2000 Server

HOW TO: Check and Countercheck Security-Related Information in Exchange System Manager in Exchange 2000 Server

View products that this article applies to.

This article was previously published under Q312647

↑ Back to the top

Summary

This article describes how to make sure that the Exchange Administration Delegation Wizard displays correct and complete security data. This article also describes how to set a special registry key so that Exchange System Manager views more accurate data.

Requirements

  • Log on as Administrator.

Check and Countercheck Security-Related Information

  1. In the Microsoft Exchange program group, start Exchange System Manager.
  2. Right-click the organization name, and then click Delegate Control.
  3. In the Exchange Administration Delegation Wizard, on the Welcome screen, click Next.
  4. In the Users Or Groups screen, verify that the organization administrator is listed as an Exchange Full Administrator.
  5. Click the administrator object, and then click Edit.
  6. In the Delegate Control dialog box, click Exchange View Only Administrator, and then click OK.
  7. Verify that the organization administrator is now listed as an Exchange View Only Administrator in the Users Or Groups screen, and then click Next.
  8. In the final screen of the wizard, click Finish.
  9. Right-click the organization again, and then click Properties.
  10. Click Change Mode.
  11. Click OK to the warning that the process is irreversible, verify that the change is successful, and then click OK again.
  12. Again, right-click the organization, click Delegate Control, and then click Next in the Welcome screen.
  13. In the Users Or Groups screen, verify that the organization administrator is in fact listed as an Exchange View Only Administrator, and then click Cancel.
  14. Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Sites and Services.
  15. On the View menu, click Show Services Node.
  16. In the console tree, expand Services, expand Microsoft Exchange, and then note that the organization object is located under Microsoft Exchange.
  17. Right-click Services, and then click Properties.
  18. Click the Security tab, click Enterprise Administration, and then, under Permissions, verify that this security group has inherited Full Control permissions for this object. (Full Control permissions are in turn inherited by all containers below it in the structure, including the Exchange 2000 organization.)
  19. Click OK, and then quit Active Directory Sites and Services.
  20. Change back to Exchange System Manager, right-click the organization name, click Properties, and verify that no Security tab is provided.
  21. Quit Exchange System Manager.

Set a Special Registry Key for Exchange System Manager

WARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.
  1. Click Start, point to Run, type Regedit in the Run box, and then click OK to start Registry Editor.
  2. Locate the following key in the registry:
    HKEY_CURRENT_USER\Software\Microsoft\Exchange\ExAdmin
  3. On the Edit menu, point to New, and then click DWORD Value.
  4. Name the new value ShowSecurityPage, double-click the new value, type 1 under Value Data, and then click OK.
  5. Quit Registry Editor. The ShowSecurityPage value causes Exchange System Manager to display a Security tab on all configuration objects. If the ShowSecurityPage value is not present, or if its value is set to 0, the Security tab is available only on Address List objects, mailbox and public stores, and top-level public folder hierarchies.

  6. In the Microsoft Exchange program group, click Exchange System Manager.
  7. Right-click the organization object, and then click Properties.
  8. In the Properties dialog box, click the Security tab.
  9. Under Name, click Administrator, and then, under Permissions, examine the individual permissions that are granted.
  10. Click Enterprise Administrator to see that this security group has inherited Full Control permissions for the organization.
  11. Click OK, and then quit Exchange System Manager without changing the security settings.



↑ Back to the top

Keywords: KB312647, kbhowtomaster, kbhowto

↑ Back to the top

Article Info
Article ID : 312647
Revision : 4
Created on : 10/28/2006
Published on : 10/28/2006
Exists online : False
Views : 258