This article applies to:
Exchange 2016
PROBLEM
In public folders client permissions, you are missing entries for Default and/or Anonymous user roles. Those roles are present by default, however in some earlier versions of Exchange, it was technically possible to delete them. So you can end up with inheriting public folders that are missing those permissions.
What are those permissions used for?
Default is applied to any Exchange authenticated users that are not explicitly listed. For example John is an Exchange user and tries to access a public folder. If there is no permission entry for user John present, the value of Default will be applied to him.
Anonymous is used if you have want give external non-Exchange users access to your public folders.
If those entries are missing, this can cause different problems with access rights processing. Which in end effect can cause crashing of applications that need access public folders. Or public folder client permissions not being processed and applied correctly.
In order to fix this, you can use the PowerShell script given below.
The script will automatically check all your public folders for Default and Anonymous are present and if not it will create entries:
– Default with Access Permission FolderVisible
– Anonymous with Access Permission None
The script does not touch existing entries.
You can of course customize the script to you needs, for example to define other type of permissions, if needed.
This script can also be downloaded from Microsoft TechNet Gallery.
He lives in Zurich, Switzerland and is a dedicated specialist, with 30 years of professional work experience in IT.
Before starting Exchangemaster GmbH he worked as a system engineer and project manager with customers of all sizes and across many industries: From small ISV startups and a NGO humanitarian organizations up to largest international corporations like Stryker, Swisscom, British Telecom and Nyrstar.
He spent his entire career delivering Microsoft based infrastructure solutions with main focus on Active Directory and Exchange. During those years, he collected a valuable work experience on 8 Exchange generations (2019, 2016, 2013, 2010, 2007, 2003, 2000 and 5.5) and has delivered services to a user base of more than 3.2 million mailboxes in on-premise, hybrid and Office 365 deployments.
Beside working on customer projects, he is a regular speaker and expert at Microsoft conferences and user groups. As a Microsoft Certified Trainer he also teaches Microsoft Official Curriculum courses to technical professionals around Europe.
For his work he has received numerous awards.
In 2005 he was the first member to be elected into the MCP Hall of Fame by Windows IT Pro Magazine readers choice (as 1 of 6 worldwide).
From 2005-2017, Dejan has been awarded by Microsoft Corporation with the yearly Microsoft Most Valuable Professional award in area of Exchange for 12 years in a row (one of approximately 100 worldwide and, at the time, the only 1 such in Switzerland).
- FAQ 000181 – How to enable mailbox auditing using PowerShell - August 1, 2023
- FAQ 000180 – How to set Microsoft Teams Room Device to use internal NTP server - December 15, 2021
- FAQ 000178 – How to change the sender and reply E-mail address in Microsoft Bookings - January 11, 2021
Leave A Comment