Hello everyone I really need some help here I have exchange server 2003 and using outlook 2007, i was a new administrator and didnt know the danger of using outlook 2007 by using file>open>other users folder)i have accessed one of the employee mailbox by mistake and now the record is being saved in exchange system manager as last "logged on by" and i am afraid that i am going to be in trouble by auditors, so i am requesting somehelp to make this loggon details desapear/deleted from the system
Posts: 2077
Joined: 11.Nov.2008
From: The Netherlands
Status: offline
There is no danger to using that method to access a mailbox.
You are an administrator, and as such have an obligation to the company to make sure the system is working the way it's supposed to be working. If that requires you to access other people's mailboxes, then so be it. As an administrator you have the obligation to your employer to garuantee the proper working of the systems.
The fact that you have a personal threshold preventing you from browsing mailboxes is a good thing. I'm having the same in that regard, in which I will not access people's mailboxes without their consent, or consent from their manager. Then again, I don't have direct access to any mailbox, and actually need to grant myself rights to their mailboxes in order to access them. Said rights are removed by me once done.
If on an auditor level the company is going to make trouble for an administrator (or even backup applciation) having tools or possibilities to access other mailboxes, either there's something wrong with the companies security scheme, or there's an auditor out to actually make sure he/she finds something.
You can twist it around to state you were curious if the administrator had rights, and if so, where those rights came from and who else might have these rights. Which you might still have under investigaton.
In the latter case you're working on further securing the system, which is something no self-respecting auditor can fault you for.
Also, you're seeing if you can access the users mailboxes in any way, in order to provide better support to the users when required. Better support in this case is usually faster support, meaning sorting problems faster, and thus getting users back to their work sooner. Also not something a company can fault you for.
Getting your last-logon data out of there, doubtful that can even be done. The next time the user logs in, that bit of data is gone anyway. I wouldn't worry about it.
_____________________________
I reject your reality, and substitute my own - Adam Savage
Thanks Neko, That was a peace of convincing advice but everytime this paticular user opens his inbox the system creates a different line of info and the last one stays unchanged with the most recent date while this happened 3 months ago. Thanks and i am still looking for some more solution
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [Microsoft Exchange 2003] >> Server Security >> Exchange System Manager 
Exchange System Manager - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread
