Sharing Policy not working as expected

We'd like all users (including future new users) to have full read only access to everyones calendar in the organisation - not just free/busy access.

We have a default sharing policy defined here - https://*ourexchangeserver*/ecp --> Organisation --> individual sharing

This policy states:

Sharing with a specific domain - our external domain name

Specify what information you want to share:

Share your calendar folder (checked)

All calendar appointment information, including time, subject, location and title.

When I check any user's calendar permissions that have not been manually modified it shows that 'default' has 'free/busy time' and 'anonymous' has 'none'.

Does anyone know how I can achieve this?

This is an article that achieves the goal but with 2010, we're on 2013:

http://blog.enowsoftware.com/solutions-engine/bid/185323/Scripting-Agent-Cmdlet-Extension

Best regards,

Shaun

August 18th, 2015 11:05am

Hi Shaun,

Sharing polices are assigned to user mailboxes and allow your users to self-manage and share their free/busy information (including the Calendar folder) with recipients in external Office 365 organizations or other federated Exchange on-premises organizations. In other words, it works between two Exchange organization calendar sharing instead of within Exchange organization.

Based on my knowledge, by default all new users will be automatically configured with free busy and there is no method in Exchange to set the Default calendar permission for new created users automatically.

We can change the default calendar permission to Reviewer manually for existing mailbox by the following command:

$all=Get-Mailbox

$all | ForEach {Set-MailboxFolderPermission -Identity $($_.alias):\Calendar -User Default -AccessRights "Reviewer"}

Re

Free Windows Admin Tool Kit Click here and download it now
August 19th, 2015 4:19am

Thanks for the Response Winnie but what about cmdlet extension agents mentioned in the article below?

http://blog.enowsoftware.com/solutions-engine/bid/185323/Scripting-Agent-Cmdlet-Extension

Regards,

Shaun

 
August 19th, 2015 6:00am

Hi Winnie

I ended up just running a PS Script like you suggested and put it on a scheduled task:

PS ISE:

Add-PSSnapin Microsoft.Exchange.Management.PowerShell.E2010 -ErrorAction STOP

Get-Mailbox | ForEach {Set-MailboxFolderPermission -Identity $($_.alias):\Calendar -User Default -AccessRights "Reviewer"

Regards,

Shaun

Free Windows Admin Tool Kit Click here and download it now
August 20th, 2015 5:14am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics