[Exchange] RE: Managing DLs with Groups

[Michael B. Smith]

Ay yi yi.

My PowerShell coding methodology has changed SO MUCH since I wrote that.

From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On 
Behalf Of Michael B. Smith
Sent: Wednesday, May 7, 2014 3:57 PM
To: exchange@lists.myitforum.com
Subject: [Exchange] RE: Managing DLs with Groups

This may help

http://theessentialexchange.com/blogs/michael/archive/2011/07/21/generating-a-report-on-distribution-groups-and-their-membership-v2.aspx

Since it outputs objects, you can 'select-object' and 'format-table' and 
'format-list' to your heart's content.

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Miller Bonnie L.
Sent: Wednesday, May 7, 2014 3:50 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] RE: Managing DLs with Groups

I ran across this during our 2007 to 2013 migration, and thankfully this is not 
accurate for 2013-you can use groups.

For ours, I first added a new global dl managers group via AD as the manager, 
and then within EAC, using an account that is a member of the global dl 
managers group, I was able to add additional groups for those DLs that are 
delegated for management (previously done via direct AD permissions).

As far as auditing, I'm not sure how they are stored, but you would probably 
have to use PS to get information from the DLs via Exchange, as when viewing 
the managedby attribute in AD, it only shows the first one applied.

-Bonnie

From: listsad...@lists.myitforum.com<mailto:listsad...@lists.myitforum.com> 
[mailto:listsad...@lists.myitforum.com] On Behalf Of Aakash Shah
Sent: Wednesday, May 07, 2014 12:32 PM
To: exchange@lists.myitforum.com<mailto:exchange@lists.myitforum.com>
Subject: [Exchange] Managing DLs with Groups

I just learned that with Exchange 2010 and Exchange 2013, you can no longer 
manage DLs with groups as per 
http://blogs.technet.com/b/exchange/archive/2011/05/04/how-to-manage-groups-with-groups-in-exchange-2010.aspx.

Besides the workarounds mentioned on the blog above, are there any other 
workarounds/solutions that people have used to address this problem?  My goal 
primarily is to be able to quickly audit a user's permission to identify what 
access permissions they have, ideally through the Member Of tab along with the 
rest of the user's permissions.

Thanks,

-Aakash Shah