First, the genericuser account should be protected with a password known only to an administrator, and users should log on with their own user IDs. Do do it the way you suggest, with a shared ID, serves to hide their identities and therefore violates security principles. Further, any one of them can change the password and then deny doing it, locking everyone out, and any one of them can send from that mailbox, with their identities hidden.
Do these "generic users" have their own mailboxes? If so, then you should put them all in a distribution list and grant that list permissions on the mailbox folders, restricting the ability to delete, then have each of them open that mailbox as a second mailbox. You can also put them in a security group (NT group) and grant that group Send As right on the mailbox if you need them to have that capability. Ed Crowley MCSE+Internet MVP Freelance E-Mail Philosopher Protecting the world from PSTs and Bricked Backups!T -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John Aldrich Sent: Wednesday, November 02, 2005 8:46 AM To: Exchange Discussions Subject: Is it possible... (On Exchange 5.5) I am being forced to give a bunch of call center employees access to Exchange (internal-only). What I would like to do, if it's possible, is limit their ability to delete emails. My first thought is to create a generic email address that would be shared between all of the users and not permit them to delete emails, so that when an announcement comes to that email address, it can't be deleted by the first user to see it. I figure I can create a mailbox that is owned by someone else and give the call center users "reviewer" access and give the "team leads" / management read/write access so they can delete the emails after say, 30 days or whatever. But I'd rather create a generic mailbox and make that mailbox owned by the generic user (who already exists) but limit their ability to delete emails. That would also remove the "coolness" factor of being able to email all your buddies on the floor the same joke, etc. and reduce the likelihood of misuse. Basically I want to have a mailbox "genericuser" that is owned by "genericuser" but "genericuser" can't delete any email and there are about 20-30 people using the "genericuser" ID to log into their PCs. Is this possible in Exchange 5.5 or do I need to create mailbox "Generic2" and give "genericuser" reviewer access to that mailbox and "supervisor" read/write access? Thanks John _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/read/?forum=exchange To subscribe: http://e-newsletters.internet.com/discussionlists.html/ To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
