HomeTech ArticlesExporting Exchange 2003 Mailbox InformationAssign Secondary Account Permissions to Distribution Lists in Exchange 2003

Grant External Account Permissions to Modify Delegates

This HTA applet allows you to grant extended AD permissions to a specific user. I use it to assign permissions to the Associated External Account of an AD user rights to modify their own delegates.

I found what values I needed by configuring a single user with permissions, then using Richard's DACL export script to dump that user. I then modify the script (see line 248) to match the permissions I want to grant.

' Template: AddAce(TrusteeName, gAccessMask, gAceType, gAceFlags, gFlags, gObjectType, gInheritedObjectType)

The applet runs faster on the DC, but is usable on my local workstation.

AttachmentSize
SetDelegatePerms.hta12.8 KB
‹ Assign Secondary Account Permissions to Distribution Lists in Exchange 2003upChanging the Exchange Organization after Installation. ›

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <blockquote> <center> <hr> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img>
  • Lines and paragraphs break automatically.
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options