RBAC, assign only enable-remotemailbox access

Austin Sundar 436 Reputation points
2022-07-18T17:41:33.74+00:00

I want to create a custom role in online exchange that allows only remote mailbox command/action. Can anyone suggest how to achieve this?
enable-remotemailbox , so the servicedesk team can enable mailbox for any missing/failed accounts.

Microsoft Exchange Online Management
Microsoft Exchange Online Management
Microsoft Exchange Online: A Microsoft email and calendaring hosted service.Management: The act or process of organizing, handling, directing or controlling something.
4,035 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Joyce Shen - MSFT 16,626 Reputation points
    2022-07-19T02:16:17.53+00:00

    Hi @Austin Sundar

    Please note that the command Enable-RemoteMailbox is available only in on-premises Exchange, so we should run the command and create the role on-prem as well.

    We can use Get-ManagementRole -Cmdlet xxx-xxx to check what roles are need for running the command. So here for Enable-RemoteMailbox, it requires below roles:
    222036-image.png

    Then you could create a new role group contain the roles above for the team you specify:
    222027-image.png


    If an Answer is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments No comments