The AD attribute that may help you is: msExchQueryBasDN Bear in mind that this has to be set for each user individually, and the form it takes restricts the view to the OU the user is a member of.
Yours, Julian Stone -----Original Message----- From: Baker, Jennifer [mailto:[EMAIL PROTECTED]] Sent: Saturday, August 17, 2002 7:17 AM To: Exchange Discussions Subject: RE: Global Address Lists Restricting address book views will not keep users from using owa, nor will it keep owa users from searching the entire global address list. The restricted address book views in ESM only apply to mapi. (pop and imap users also if OUs are setup correctly). Assuming you want to leave the http virtual server running, you could use adsiedit to restrict the address book views for owa users. Search for "Restrict Address View" in the kb for instructions. There should be a decent article about hosting email for virtual organizations in that same search. Good Luck. Jen -----Original Message----- From: Wendy Reetz [mailto:[EMAIL PROTECTED]] Sent: Friday, August 16, 2002 4:31 PM To: Exchange Discussions Subject: Re: Global Address Lists Thank you all for your quick responses. If restricting the view in the GC restricted the object access, wouldn't that mean I shouldn't be able to log in on the OWA? (I"m new at this, so perhaps the 2 aren't related) restricting view of other users for political reasons. For hosting other users & for user privacy. Our users would be ISP users, not just a company where everyone knows everyone & all. I think I can create multiple GALs & restrict the access to the lists. As long as a user is in one of them they appear to be able to log on. I'll have to check tomorrow. However, this would put me in the position of having 1 person in a GAL if they are not in any other group. I'll check out the links this weekend as well. Thanks so much, Wendy ----- Original Message ----- From: "Baker, Jennifer" <[EMAIL PROTECTED]> To: "Exchange Discussions" <[EMAIL PROTECTED]> Sent: Friday, August 16, 2002 6:31 PM Subject: RE: Global Address Lists > I lost you after the beautiful part. > > -----Original Message----- > From: Chris Scharff [mailto:[EMAIL PROTECTED]] > Sent: Friday, August 16, 2002 3:16 PM > To: Exchange Discussions > Subject: RE: Global Address Lists > > > Well, OK. I think you are correct that if you don't have rights to > view the > object within the GC they can't access it (because you are more > beautiful and smarter than I), but I'm not sure that restricting the > search permissions on the Global Address List object in the ESM alone > is sufficient > to restrict the ability to view an object in AD (through other means). > > > -----Original Message----- > > From: Baker, Jennifer [mailto:[EMAIL PROTECTED]] > > Sent: Friday, August 16, 2002 5:12 PM > > To: Exchange Discussions > > Subject: RE: Global Address Lists > > > > The DN thingy didn't work for me. I'm not changing my answer. :) > > > > -----Original Message----- > > From: Chris Scharff [mailto:[EMAIL PROTECTED]] > > Sent: Friday, August 16, 2002 3:10 PM > > To: Exchange Discussions > > Subject: RE: Global Address Lists > > > > > > Sort of. :) > > > > > -----Original Message----- > > > From: Baker, Jennifer [mailto:[EMAIL PROTECTED]] > > > Sent: Friday, August 16, 2002 5:10 PM > > > To: Exchange Discussions > > > Subject: RE: Global Address Lists > > > > > > Add them to the NewGal group?? I don't see the problem. Are you > > > suggesting that you do not want to add them to this group and you > > > need another way > > > for > > > the person outside of the group to be able to logon? > > > > > > If the mapi user does not have rights to view their user object > > > within > > the > > > global catalog then they cannot use mapi. > > > > > > -----Original Message----- > > > From: Wendy Reetz [mailto:[EMAIL PROTECTED]] > > > Sent: Friday, August 16, 2002 2:35 PM > > > To: Exchange Discussions > > > Subject: Global Address Lists > > > > > > > > > In E2K if I hide UserA from the global access list, they can log > > > in through OWA, but not through outlook (xp). Is that typical > > > behavior? or do I have > > > something configured wrong? Is there another way to restrict who's seen > > > in > > > the Address books by Outlook users? > > > > > > I have it set up where the Default Global Address List is > > > disallowing "Open Address List". This hides it's contents from > > > users. I then have > > another > > > NewGAL defined for a group. That group has "Open Address List" rights, > > & > > > can log in & see their list just fine. The problem comes when a person > > > from > > > outside the group wants to log in. Not being in my NewGAL list, > > > they > > get > > > a > > > "The name could not be resolved. The name could not be matched to > > > a > > name > > > in > > > the address list." message. > > > > > > Short of allowing everyone to see the Default GAL, any > > > suggestions? > > > > > > Please help!! :-) > > > > > > Wendy > > > > > > > > > _________________________________________________________________ > > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > > Archives: http://www.swynk.com/sitesearch/search.asp > > > To unsubscribe: mailto:[EMAIL PROTECTED] > > > Exchange List admin: [EMAIL PROTECTED] > > > > > > _________________________________________________________________ > > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > > Archives: http://www.swynk.com/sitesearch/search.asp > > > To unsubscribe: mailto:[EMAIL PROTECTED] > > > Exchange List admin: [EMAIL PROTECTED] > > > > _________________________________________________________________ > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > Archives: http://www.swynk.com/sitesearch/search.asp > > To unsubscribe: mailto:[EMAIL PROTECTED] > > Exchange List admin: [EMAIL PROTECTED] > > > > _________________________________________________________________ > > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > > Archives: http://www.swynk.com/sitesearch/search.asp > > To unsubscribe: mailto:[EMAIL PROTECTED] > > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] ------------------------------------------------------------------------ This e-mail and any attachments may be confidential and/or legally privileged. If you have received this e-mail and you are not a named addressee, please inform the Netstore Technical Support Desk on +44 1344 444342 and then delete the e-mail from your system. If you are not a named addressee you must not use, disclose, distribute, copy, print or rely on this e-mail. Although Netstore routinely screens for viruses, addressees should scan this e-mail and any attachments for viruses. This mail has been processed with the Netstore Content Filtering Service. Visit our website at www.netstore.net ------------------------------------------------------------------------ _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]
