Exchange Management Security

Exchange Management Security

This content is no longer actively maintained. It is provided as is, for anyone who may still be using these technologies, with no warranties or claims of accuracy with regard to the most recent product version or service release.

CDO for Exchange Management (CDOEXM) objects must be run in a security context that is sufficient to perform management tasks. This is also true for the Collaboration Data Objects (CDO) and Active Directory® Service Interfaces (ADSI) objects with aggregated CDOEXM recipient interfaces. CDOEXM uses the Microsoft® Windows® server operating systems security model for accessing Microsoft Exchange Server 2003. Authentication as a Windows server user will give you the administrative rights associated with that user. The following are ways to obtain administrative privileges for CDOEXM objects:

Log On as an Administrator

As an administrator, you can create objects to perform system management.

Wrap the COM Classes using COM+

In many automated processes, you may want to allow users without administrative privileges to perform some specific Exchange management tasks (for example, allowing them to register at your Web site and gain access to public stores). You can set up a server-side ASP page that can run management objects within their own security contexts.

To give your management objects security contexts, you can wrap them in COM+ applications (formerly called an MTS package). COM+ applications allow you to specify the identity, and thus the security context, of that object as a user with administrative rights. For more information, see "Security in COM+" in the COM+ section of the Platform SDK in the MSDN® Library.

Send us your feedback about the Microsoft Exchange Server 2003 SDK.

Build: June 2007 (2007.618.1)

© 2003-2006 Microsoft Corporation. All rights reserved. Terms of use.