cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Veritas.com
Support

Permissions problem on archive for deleted active directory account

Go to solution
Hans_Peeters
Level 4

‎02-28-2010 11:29 AM

Hi,

Enterprise Vault Exchange v8 SP3

We cannot change permissions on archives for AD accounts that have been deleted.
On Archive properties > Permissions Tab sheet we see: Account Unknown (\S-1-5-2...)     <-- deleted AD account

1. We cannot delete this account
error: Account 'Account Unknown (S-1-5...)' cannot be removed as it has 'Automatically set' permissions associated with it.

2. When leaving this account but adding additional permissions
error: Please enter an existing Windows Domain account name

Regards
Hans Peeters
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
TonySterling
Moderator
Moderator
Partner    VIP    Accredited Certified

‎02-28-2010 02:39 PM

Change the Bill To account


When attempting to add users or groups to the 'Permissions' tab of an archive, a pop-up windows appears stating "Please enter an existing Windows NT account name."
Details:
Background
In order for Enterprise Vault to access archives correctly, it needs a mailbox to bill the usage to. When adding permissions to an archive, EV checks the user accounts against Active Directory (AD). If the AD account used for billing is no longer active, EV return the error "Please enter an existing Windows NT account name."
 
Solution
1. Open the Vault Administration Console (VAC) and expand Archives-> Exchange Mailbox and select the archive
2. Right-click on the Archive and change the 'Bill usage to:' setting to a valid account (i.e. Vault Service Account) and apply the change
3. Select the 'Permissions' tab and add the users desired to have access to the archive

View solution in original post

0 Kudos
4 REPLIES 4

Go to solution
GertjanA
Moderator
Moderator
Partner    VIP    Accredited Certified

‎02-28-2010 11:41 AM

Hello Hans,

Is the mailbox still there? Link that to a new account, sync mbx in EV. Try again removing unknown account
Regards. Gertjan
0 Kudos

Go to solution
Hans_Peeters
Level 4

‎02-28-2010 11:53 AM

Hello Gert Jan,

Mailbox and associated AD account deleted.
Person left the company.

When somebody leaves the company, all mails are archived using a special mailbox archiving policy.
Herafter we delete the mailbox and AD account.

But it seems now to be a problem if we would like to assign permissions to another person to access this archive.

Regards
Hans Peeters
 

0 Kudos

Go to solution
TonySterling
Moderator
Moderator
Partner    VIP    Accredited Certified

‎02-28-2010 02:39 PM

Change the Bill To account


When attempting to add users or groups to the 'Permissions' tab of an archive, a pop-up windows appears stating "Please enter an existing Windows NT account name."
Details:
Background
In order for Enterprise Vault to access archives correctly, it needs a mailbox to bill the usage to. When adding permissions to an archive, EV checks the user accounts against Active Directory (AD). If the AD account used for billing is no longer active, EV return the error "Please enter an existing Windows NT account name."
 
Solution
1. Open the Vault Administration Console (VAC) and expand Archives-> Exchange Mailbox and select the archive
2. Right-click on the Archive and change the 'Bill usage to:' setting to a valid account (i.e. Vault Service Account) and apply the change
3. Select the 'Permissions' tab and add the users desired to have access to the archive
0 Kudos

Go to solution
Hans_Peeters
Level 4

‎03-01-2010 04:47 AM

Hi Tony,

Problem solved with your sollution.
Thanks!

Regards
Hans Peeters
0 Kudos