Exchange Server Forums
Forums |
Register |
Login |
My Profile |
Inbox |
RSS 
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
"From" Field Security
|
Users viewing this topic:
none
|
Logged in as: Guest
|
Login  | |
|
 Limited time MSExchange.org offer! -- 1.Sep.2008 1:00:00 PM
|
|
TechGenix and SolarWinds have partnered to provide free copies of SolarWinds Exchange Monitor to all visitors who join the MSExchange.org Forums. SolarWinds Exchange Monitor is a handy desktop dashboard that continuously monitors Microsoft Exchange to deliver real-time insight into Exchange services, mail queue sizes, and host server health. Learn more about Exchange Monitor and the free offer!
|
"From" Field Security - 14.Feb.2007 9:48:49 AM
|
|
|
evh5150
Posts: 4
Joined: 18.Jul.2002
From: USA
Status: offline
|
Running Exchange 2003 SP1. It was just brought to my attention that any user sending an email can turn the "From" field on and enter any other user they wish causing the email to look as if it came from that other person.
I have obviously messed something up, but I have no idea what or where to begin looking. I'm not even sure how long this has been this way.
Can someone offer a little insight as to where to start? Thanks for your help.
|
|
|
|
|
RE: "From" Field Security - 14.Feb.2007 10:03:20 AM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
In AD, there is a Security setting for "Send As". This is what allows a user to do what you describe.
In the ADUC, make sure you have the View-->Advanced Features checked. When you open the properties of an object, you'll see the Security tab. That is where the "Send As" is configured.
Figure out where you added the permission and remove it - either on a parent object that propagated down, or perhaps you configured Delegate Control?
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: "From" Field Security - 14.Feb.2007 10:42:45 AM
|
|
|
evh5150
Posts: 4
Joined: 18.Jul.2002
From: USA
Status: offline
|
Thank you for your reply. I'm looking in ADUC | User A | Properties | Security and the "Send As" permission has not been given to the person who sent the message. It is set for some Admin groups, but the offending user is not a member of those groups.
Also, I didn't Delegate Control. You delegate in ESM either on the Organization or the Administrative Group, correct? I went to each of these places, right-click, Delegate Control. That should show what's already been delegated, correct? If so, there's nothing out of the ordinary there.
Thanks again for your help. I'm really struggling here.
|
|
|
|
|
RE: "From" Field Security - 14.Feb.2007 12:01:20 PM
|
|
|
uemurad
Posts: 5571
Joined: 7.Jan.2004
From: California, USA
Status: online
|
In ADUC, go to the Security tab and click Advanced.
Scan the Permissions tab to see if you can spot where the permissions are set for other users. You can also use the Effective Permissions tab to confirm the permissions for a particular user or group.
You can also set up Delegate Control in ADUC at any level. Remember this particular feature is in AD security, and not in Exchange.
_____________________________
Regards,
Dean T. Uemura
Microsoft MVP - Exchange
exchangeguy.blogspot.com
uemurad@yahoo.com
|
|
|
|
|
RE: "From" Field Security - 14.Feb.2007 12:52:36 PM
|
|
|
evh5150
Posts: 4
Joined: 18.Jul.2002
From: USA
Status: offline
|
I understand this is done from ADUC. I looked through the users and their permissions. None had Send As. I did the same thing from groups. Some had Send As. I checked the membership of those groups and no one was in the group that shouldn't be. I made sure Authenticated Users and Everyone were not in the groups with Send As rights.
I checked Effective Permissions on the "Sent As" user and queried on the user doing the sending. His account does not have Send As. I also queried Effective Permissions for every group he is a member of. None had Send As.
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
Printable Version
