internal/data/exchangeSPDefaults/accessRules/msExchangeDomainobject.json
|
[
{ "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Service-Principal-Name", "InheritedObjectType": "<All>", "AccessControlType": "Deny", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericRead", "InheritanceType": "All", "ObjectType": "<All>", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericRead", "InheritanceType": "All", "ObjectType": "<All>", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Exchange-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "NT Authority\\Authenticated Users" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Exchange-Personal-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "NT Authority\\NETWORK SERVICE" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "E-mail-Addresses", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Proxy-Addresses", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericAll", "InheritanceType": "All", "ObjectType": "ms-Exch-Dynamic-Distribution-List", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Data-Encryption-Policy-Link", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Admin-Display-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Legacy-Exchange-DN", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Display-Name-Printable", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Text-Encoded-OR-Address", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Exchange-Personal-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Exchange-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Display-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Public-Delegates", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Garbage-Coll-Period", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Show-In-Address-Book", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Organization Management" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "User-Account-Restrictions", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Delegated Setup" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-UM-Spoken-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Public-Delegates", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-UM-Pin-Checksum", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-User-Culture", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Blocked-Senders-Hash", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-UM-Dtmf-Map", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "X509-Cert", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Safe-Senders-Hash", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Safe-Recipients-Hash", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Mobile-Mailbox-Flags", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Picture", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "CreateChild, DeleteChild, ListChildren", "InheritanceType": "Descendents", "ObjectType": "ms-Exch-Active-Sync-Devices", "InheritedObjectType": "inetOrgPerson", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "CreateChild, DeleteChild, ListChildren", "InheritanceType": "Descendents", "ObjectType": "ms-Exch-Active-Sync-Devices", "InheritedObjectType": "User", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "CreateChild, DeleteChild, ListChildren, ReadProperty, WriteProperty, ListObject", "InheritanceType": "All", "ObjectType": "ms-Exch-Active-Sync-Device", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ExtendedRight", "InheritanceType": "None", "ObjectType": "DS-Replication-Synchronize", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Group-Type", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Exchange-Personal-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Canonical-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "User-Account-Control", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Exchange-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Is-Member-Of-DL", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty", "InheritanceType": "All", "ObjectType": "Garbage-Coll-Period", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-UM-Server-Writable-Flags", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Mailbox-Security-Descriptor", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "ReadProperty, WriteProperty, ListObject, Delete", "InheritanceType": "Children", "ObjectType": "<All>", "InheritedObjectType": "ms-Exch-Active-Sync-Device", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Servers" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Data-Encryption-Policy-Link", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericAll", "InheritanceType": "All", "ObjectType": "ms-Exch-Dynamic-Distribution-List", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "CreateChild, DeleteChild, ListChildren, ReadProperty, WriteProperty, ListObject", "InheritanceType": "All", "ObjectType": "ms-Exch-Public-Folder", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericAll", "InheritanceType": "Descendents", "ObjectType": "<All>", "InheritedObjectType": "ms-Exch-Active-Sync-Devices", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "GenericAll", "InheritanceType": "Descendents", "ObjectType": "<All>", "InheritedObjectType": "ms-Exch-Public-Folder", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Display-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Admin-Display-Name", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Public-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Exchange-Personal-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Legacy-Exchange-DN", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Show-In-Address-Book", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Garbage-Coll-Period", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "ms-Exch-Public-Delegates", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Exchange-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Text-Encoded-OR-Address", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Personal-Information", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Display-Name-Printable", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "E-mail-Addresses", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" }, { "Path": "%DomainDN%", "ActiveDirectoryRights": "WriteProperty", "InheritanceType": "All", "ObjectType": "Proxy-Addresses", "InheritedObjectType": "<All>", "AccessControlType": "Allow", "Identity": "%DomainNetBIOSName%\\Exchange Trusted Subsystem" } ] |