Allow owners to manage distribution groups in Exchange 2010

Posted on by Dean Grant

To allow distribution group owners to manage distribution groups from the Exchange Control Panel and remove the ability to add and/or remove distribution groups, a custom role is required to be created and assigned to the Default User Assignment Role.

1) Open Exchange Management Console.

2) Create the management role named ‘OwnerDistributionGroups’ and assign it as a child role by using the following cmdlets;

New-ManagementRole -Name OwnerDistributionGroups -Parent MyDistributionGroups

3) Remove the ability to add or remove distribution groups from the custom role by using the following cmdlets;

Remove-ManagementRoleEntry OwnerDistributionGroups\New-DistributionGroup -Confirm:$false
Remove-ManagementRoleEntry OwnerDistributionGroups\Remove-DistributionGroup -Confirm:$false

4) Assign the custom role ‘OwnerDistributionGroups’ to the user role ‘Default Role Assignment Policy’ by using the following cmdlet;

New-ManagementRoleAssignment -Role OwnerDistributionGroups -Policy “Default Role Assignment Policy”

 

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s