Accessing a Disabled AD User’s Mailbox with Full Access

exchange-2010

In Exchange 2010, if an AD user is disabled but another user has access to their mailbox, will they still be able to access the mailbox or does that user need to remain enabled for this functionality to work?

Best Answer

If you disable a user in AD, their mailbox still exists and you should still be able to access the mailbox because AD simply controls the authentication, but the permissions to the mailbox will still exist. At least, that was how it was in 2003. I haven't had the opportunity to work with 2010, but I assume the functionality would be similar in this regard and easily testable.

enter image description here

You can also connect the mailbox to someone else's account. I'm going to link you to this technet article that can give you some ideas on what will be easiest for you; technet article!

There are three operations you can perform on a disabled mailbox:

Connect it to an existing user account in Active Directory Restore it to a new or existing user account in Active Directory Permanently delete it from the Exchange mailbox database

A side note to this is this applies to disabled AD accounts as well.

Related Topic