Johnny Yao WorkSpace

    http://sysadmin-talk.org/2010/04/5-steps-to-heaven-creating-a-custom-rbac-role-in-exchange-2010/ http://www.networkworld.com/community/node/47428

    http://technet.microsoft.com/en-us/library/ee332317.aspx

問題定義 : 1. RBAC delgate permission (database/ recipient management) to child domain 服務範圍 : 1. Provide how to setup RBAC delegate permission (database/ recipient management) to child domain 原因說明 : 解決方式 : Symptom ===== RBAC delegation permission (database/ recipient management) to child domain Resolution ============== Commands 1.            New-ManagementScope -Name "ServerInContoso" -ServerList  EX1, EX2, EX3 2.            New-ManagementScope -name "RecipientInContoso" -RecipientRoot "Contoso.msft.corp" -RecipientRestrictionFilter {name -like '*'} –verbos 3.            $RoleGroup = Get-RoleGroup "Server Management" 4.            New-RoleGroup "Server Management - Contoso" -Roles $RoleGroup.Roles 5.            $RoleGroup = Get-RoleGroup "Recipient Management" 6.            New-RoleGroup "Recipient Management - Contoso" -Roles $RoleGroup.Roles 7.            We open the ECP

  http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/3d408093-5026-470d-92d5-33575ec365dd/   By default, only member of Organization Management group can run the cmdlet. Add-ADPermission http://technet.microsoft.com/en-us/library/bb124403.aspx Please also run the Exbpa in the Toolbox to do "Permission Check".