Hello!
I have configured RBAC at a customer site (Exchange 2010 SP2 RU4).
Everything's fine, but with on exception:
The RBAC managementrole ignores AD delegation when adding a new Mailbox.
The managementscope ist set on special databases for different departments not on OUs. The User ist only delegated to some AD OUs and in Active Directory Users and Computers he only has rights on these OUs (checked). From the EMC he can only edit Users from
these OUs. But when it comes to adding a new user with a new Mailbox, he can add the user object everywhere in the AD-structure but only in the scoped mailboxdatabase. Later he can't move the added User to the right OU, because he has to move the object. This
ist correctly prohibited through the AD-Delegation.
In Exchange 2010 SP2 RU1, this issue was not there. En error ocurred, when the user wanted to add a user object into the "wrong" OU.
This issue was mentioned in KB2489130 and solved in SP1 RU3 or 4.
Does anybody has a point on this?
THX!!
