cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Veritas.com
Support

EV OWA Permission (Anyonymous User)

Kimagure_Ryo
Level 3

‎12-27-2006 08:58 AM

Hi, All.

I setup Enterprise Vault 6.0 SP3.(Windows Server 2003 R2)
Existing environment:
Platform->Windows Server 2003
MailServer->Exchange Server 2003 SP2(with OWA2003) FE and BE
Database->SQL Server 2005 SE SP1
Account
Vault Service Account:evadmin

I can confirm "Open, Delete, Restore" from Outlook.(Install UserExtensions)
But, I can't confirm some OWA function.( "delete, search, archive explore")
(Restore and Open archive item perfomed)

I check setting.
Permission found only user that set up Mailbox-archiving.
So, I put permission "Read, Delete, Write" at "EVOWAUser" which is Anonymous User for EVOWA.
Next, I can delete and search archive-items.

Is this correct??

If this is correct, the user can find another user's archive-items?


Thanks for your reading.Message was edited by:
Kimagure Ryo
0 Kudos
8 REPLIES 8

Alan_M
Level 6

‎12-31-2006 08:02 AM

That does not sound correct. Where are you looking at permissions? In the EV admin console? Double-check the steps you took when setting up the OWA extensions. Look at the log file created during installation. Make sure you configured EVservers.txt and exchangeservers.txt correctly. Make sure the IIS virtual directories were created correctly.
0 Kudos

Kimagure_Ryo
Level 3

‎01-17-2007 09:30 AM

Thanks for your reply.

I checked FE-Setup2003.log and BE-Setup2003.log.
I can't find error.


Event Log error is displayed

Event type:Warning
Event Source:Enterprise Vault
Event Category:Storage Online
Event ID:6941
Date:2006/12/28
Time:12:14:58
User:N/A
Computer:evserver
Explanation:
Client request refused due to insufficient privileges, user MAIN\EVOWAUser attempted to access the Archive Folder:

Archive name: TestUser
Archive folder path: \inbox
Vault Id: 18A99F5437299614C8445A64637713EF21110000evserverC but does not have permission(s) (Delete).
A frequent cause of this Warning is a user attempting an operation on a forwarded, moved, or copied shortcut to a Vault for which they do not have the required permission(s).

For more information, see Help and Support Center at http://evevent.veritas.com/rosetta/showevent.aspMessage was edited by:
Kimagure Ryo
0 Kudos

Sanjay_Raval
Level 6
Certified

‎01-17-2007 10:02 PM

I think it's because of vault service account user doesnot have full administrative rights.

To do so,

1. Launch the Delegate Control Wizard at Organization level, right-click your Exchange Organization
2. Click Next.
3. Click Add and click the Browse button to list users in Active Directory.
4. Find the new Vault Service account in the list of users and click OK.
5. In the drop down Role box select Exchange Full Administrator.
6.Click Next and then Finish.

Login on EV server with vault service account, and try to archive...
0 Kudos

Kimagure_Ryo
Level 3

‎01-18-2007 01:45 AM

Thanks reply!

Do you point out Vault Service account user's right?
I have already put Vault Service Account(VSC) following right.

i ) Local Administrators
EV Server
Exchange Server
SQL Server

ii ) Exchange's(Software) Full administrator

iii ) SQL Database
Datebase Creators

Is there lack??
0 Kudos

Sanjay_Raval
Level 6
Certified

‎01-18-2007 02:05 AM

Kimagure,

Yes.

Are you using same vault service account for Archiving right? I mean, outlook profile on EV server with vault service account.

Ummm... Can you check the test user mail box security permission?

It should be "Full access" for Vault service account or the user account, which you used for archiving.
0 Kudos

Kimagure_Ryo
Level 3

‎01-18-2007 03:23 AM

Hi.

>It should be "Full access" for Vault service account or the user account, which you used for archiving.
Does this indicate mailbox rights?(In Exchange)
Or, Archive Properties?(In EV AdminConsole)

I will check Testuser mailbox rights.
(Perhaps, Full access is cheked at "EVadmin")
Archive Properties for TestUser is only TestUser(Automatically set:Read,Write,Delte)


I made the verification environment(Not completely same)
and setup with same operation.
The phenomenon that looked like was confirmed.
It happened when I operate owauser.wsf and restart EVServer with ExchangeServer not started.
And same warn "Event ID: 6941" is found in Event Log.
I can find that owauser.wsf and restart EVService must perform Exchange Serivce is worked !!
However, the Exchange server had not stopped when working before.

I will check windows-firewall does not applied.(Exchange Server)
(EV & Exchange & SQL put same segment...with Normal L2-Switch)

Sorry my poor english.Message was edited by:
Kimagure Ryo
0 Kudos

Sanjay_Raval
Level 6
Certified

‎01-18-2007 04:57 AM

Yes Mail box rights

On exchange server, open active directory users and computers, select the user, right click, click on Exchange advance, click on mailbox rights,

your account EVadmin should be "full access".

well, i you almost near to resolve issue.

:)
0 Kudos

Kimagure_Ryo
Level 3

‎01-21-2007 10:04 PM

Hi, ALL

Thanks for your help !
I finished this trouble.

I reinstall OWA Extensions at Front-End, Back-End.
And run owauser.wsf again.

I was able to find OWA without trouble.
( Delete,Read,Search OK !! )

After all,it was wrong in login of the Exchange server as reconsideration.
I login User not Exchange-Administrator(Full).
-> Logon operation was not me.....

Thanks for reply, Aan M ,Sanjay Raval.
and sorry.
0 Kudos