Find OUT Who Has Access To Mailbox Import Export Role

33 Flares Twitter 0 Facebook 1 Google+ 3 LinkedIn 0 Pin It Share 0 StumbleUpon 29 Filament.io 33 Flares ×

I got an email from an Exchange admin asking me a way to find who has the rights to export & import mailbox data from/to PSTs. The answer is a quick one-liner in the Exchange Shell.

We know that the “Mailbox Import Export” role is not assigned to anyone by default, even to the Org Management group. We can assign a user/group the permission by running the following command in Exchange Shell.

New-ManagementRoleAssignment –Role “Mailbox Import Export” –User “username” or

New-ManagementRoleAssignment –Role “Mailbox Import Export” –SecurityGroup “group name”

Assign mailbox import export role

But, how will we find who has the rights currently? Run the following in the Shell to find out.

Get-ManagamentRoleAssignment –Role “Mailbox Import Export” | fl RoleAssigneeName

Find who has access to mailbox import export

The reason why Organization Management comes up, even though I haven’t explicitly given the rights (which I can), is because of the fact that members of the Organization Management group can delegate the “Mailbox Import Export” role to either themselves or others. It will become clear if you add the RoleAssignmentDelegationType parameter in the output.

Org Mgmt in mailbox import export role

Join 2,300+ of your peers for daily article updates by email.

33 Flares Twitter 0 Facebook 1 Google+ 3 LinkedIn 0 Pin It Share 0 StumbleUpon 29 Filament.io 33 Flares ×

6 thoughts on “Find OUT Who Has Access To Mailbox Import Export Role

  1. Jonas Mellquist

    Hi Rajith.. Back again ;)

    A quick question – I thought the members of the “Organization Management” weren’t allowed to use the commands and that one (or a group one was a member of) explicitly had to be added (as Regular) in order to for example run new-mailboxexportrequest..

    Can you clarify?
    Has this maybe changed in Ex2010 SP2?

    -Jonas

    Reply

Your Thoughts?