Hi i am migrating to exchange 2010 in a Dag (2 copies each local Raid1 disks on different servers + one lagged copy also on Raid1) If I want to go 'backup-less' for this implementation, I need to confirm the following points: Solution is ok 'technically' (I think it's the minimal recommended number of copies) Regulatory compliance does not require the client to have backups My question is about security: since exchange admins have all rights on the whole environment, what steps could be taken to stop a rogue admin to just crash everything without possibility to restore from backups? Are there recommended best practices to avoid such kind of 'disaster' by splitting permissions, etc ? thanks in advance bruno

thanks for your comments I guess I should remove some rights from the admin account and give them to a special account that would be used only for RBAC and recovery. brgds brunobruno