Exchange Mailbox Permissions

The Challenge

With changes that organizations face on a yearly basis from employees changing departments to leaving the company, mailbox permissions are all over the place. With no native way of looking at all permissions in one single place, most administrators struggle to get a grasp on the permissions that are assigned to each mailbox and ensure they are correct. This can lead to a breach of the Ethical Wall because someone in Sales could be accessing a mailbox owned by a Finance employee being able to access sensitive data. Another critical problem is not only knowing the permissions assigned to each mailbox, but knowing who is actually using those permissions and when they are accessing the mailbox. In Exchange 2007 SP2 & Exchange 2010 SP1 Microsoft introduced Mailbox Access Auditing that can be turned on to provide additional logging to capture this data.

The Solution

The StealthAUDIT Management Platform for Exchange is able to provide a one stop shop for all your permissions cleanup and maintenance. The solution set which leverage all the same core data collection, analysis, reporting, and remediation as the rest of the Solutions Sets – provide the ability to collect all Mailbox Permissions, Delegates, and Rights assigned. Based on all the information gathered, action can be taken to contact the owner of that mailbox to verify the permissions, delegate access or rights assigned to the mailbox with all the answers going right back into StealthAUDIT. From there, StealthAUDIT Management Platform offers a Mailbox Action Module that will allow for the administrator to take bulk action (remove/change) of the permissions and delegates currently assigned. Currently, the solution provides the ability to collect log information out of the Exchange Auditing log to be able to determine Mailbox Access that has been made.