Maybe this is totally out in left field, how about setting the main device as a kind of Kiosk that is "always" logged in, but can only run IE and then OWA - so they walk up to it and have to enter their own credentials to access the mail. Then you have eliminated the first login using shared credentials, but still have security and auditing of use. This only applies if you can sufficiently secure and lock down the machine so it's use is limited to what you want them to be able to do.
I'm kind of visualizing this as being akin to a computer you see in the public library - anyone can walk up, but can only do limited things, and then eventually you login with some unique credentials to perform enhanced tasks. Don K ________________________________ From: David Lum <[email protected]> To: NT System Admin Issues <[email protected]> Sent: Wednesday, June 27, 2012 11:52 AM Subject: RE: [Bulk] Exchange / Outlook Q Multiple users log into a single machine with just a resource account, but they all have their own e-mail boxes that I have delegated the rights to. (They log into the PC with a “PublicWorks” ID and then select the Outlook profile to open and they simply re-enter the PublicWorks credentials). I actually don’t like this setup since any user could pretend to be another user, this might be a good opportunity to make them use their own credentials to access their e-mail vs. using the single resource account. “Sorry Exchange2010 apparently changed how this is handled…”. Dave From:Andrew S. Baker [mailto:[email protected]] Sent: Wednesday, June 27, 2012 9:34 AM To: NT System Admin Issues Subject: Re: [Bulk] Exchange / Outlook Q I'd have recommended OWA as well, especially with Exchange 2010, where OWA is awesome. I would also mention RunAS, but you're not keen on entering additional credentials. Why do they need additional profiles, btw, and not just access to another mailbox? ASB http://XeeMe.com/AndrewBaker Harnessing the Advantages of Technology for the SMB market… On Wed, Jun 27, 2012 at 11:45 AM, David Lum <[email protected]> wrote: No, seems more intrusive than simply entering credentials again because they’d be launching a website and then entering credentials again anyway. From:Orland, Kathleen [mailto:[email protected]] Sent: Wednesday, June 27, 2012 8:38 AM To: NT System Admin Issues Subject: RE: [Bulk] Exchange / Outlook Q Have you considered OWA? From:David Lum [mailto:[email protected]] Sent: Wednesday, June 27, 2012 9:26 AM To: NT System Admin Issues Subject: [Bulk] Exchange / Outlook Q I have a situation where a Windows machine uses a single / main user login but needs to access different Outlook profiles. When they had Exchange 2003 they would just open Outlook, choose a profile (associated with an Exchange account, no funny POP3 stuff) and connect to that mailbox. It seems with the upgrade to Exchange 2010 they can do that with only one of the seven accounts but the other seven profiles requires the credentials for the main user to be re-entered, ignoring the “remember my password” checkbox. Ideas? David Lum Systems Engineer // NWEATM Office 503.548.5229//Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
