Beruflich Dokumente
Kultur Dokumente
Exchange Online
Permissions
Presenter Name
Presenter Role
This training package is proprietary and confidential, and is intended only for uses described in the training materials. Content and software is provided
to you under a Non-Disclosure Agreement and cannot be distributed. Copying or disclosing all or any portion of the content and/or software included in
such packages is strictly prohibited.
The contents of this package are for informational and training purposes only and are provided "as is" without warranty of any kind, whether express or
implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose, and non-infringement.
Training package content, including URLs and other Internet Web site references, is subject to change without notice. Because Microsoft must respond
to changing market conditions, the content should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the
accuracy of any information presented after the date of publication. Unless otherwise noted, the companies, organizations, products, domain names, email addresses, logos, people, places, and events depicted herein are fictitious, and no association with any real company, organization, product,
domain name, e-mail address, logo, person, place, or event is intended or should be inferred.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject
matter in this document. Except as expressly provided in written license agreement from Microsoft, the furnishing of this
document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.
Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of
this document may be reproduced, stored in or introduced into a retrieval system, or transmitted in any form or by any means
(electronic, mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of
Microsoft Corporation.
For more information, see Use of Microsoft Copyrighted Content at
http://www.microsoft.com/about/legal/permissions/
Microsoft, Internet Explorer, Outlook, SkyDrive, Windows Vista, Zune, Xbox 360, DirectX, Windows Server and
Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.
Other Microsoft products mentioned herein may be either registered trademarks or trademarks of Microsoft Corporation in the
United States and/or other countries. All other trademarks are property of their respective owners.
Overview:
Objectives
Overview of
Exchange Online
Access Control
Role Based
Access
Control
RBAC and
Active
Directory
Domain
Services
RBAC Roles
Control
Who is being given the ability to control
objects
What kinds of
objects
can be controlled
RBAC
Who?
Office 365
Administrators
Users
RBAC
Who?
Administrat
or
Office 365
Administrators
Users
Role Group
RBAC
Where?
Administrator
Office 365
Administrators
Users
Role Group
Administrators are
typically given control
over Exchange objects
across the entire
organization (tenant).
This access can be
limited to part of the
organization, but in
most cases, access is
granted to the entire
organization.
11
Organization
11
RBAC
What?
Administrator
Office 365
Administrators
Mailboxes
Users
Role Group
Public Folders
Contacts
Organization
Administrator role
groups control
Exchange objects like
User Mailboxes, Mail12
Contacts, and Public
folders etc.
PowerShell
12
RBAC Who?
End User
Office 365
Administrators
Users
13
13
RBAC
Where?
End User
Office 365
Administrators
Users
14
14
RBAC
What?
End User
Office 365
Administrators
Users
Distribution Group
Role Assignment Policy
LinkedIn FaceBook
User Roles can control the ability to:
Mobile Devices
15
15
O365 Admin
Roles vs.
EXO Admin
Roles
vs.
EXO User Roles
16
Exchange
Admin
Center
Permissions
Page
17
Default
Role Groups
18
Default
Exchange
Admin
Roles
19
Exchange
Admin
Center View
When you add a user to an existing or new role group they will
then have the ability to view the Exchange Admin Center with
the view restricted based on the functionality of the role
group.
Member of Organization
Management
Role Groups
and
PowerShell
21
User Roles
22
Outlook Web
Access Policies
23
Configuring
OWA
Mailbox
Policies
24
Applying
OWA
Mailbox
Policy to
Users
25
End user
experience:
Default
Policy vs
Restricted
Policy
26
Lab: Managing
Permissions
(RBAC)
27
Module
Review
28
Module
Summary
In
30
2013
2012 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks
in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of
this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and
Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation.MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR
STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION