Skip to content
Universities of Wisconsin
Call Now608-800-6762 Call 608-800-6762 Request Info Request Info Search the UW Extended Campus website Search
Wisconsin Online Collaboratives
  • About Us
    • About Us
    • Accreditation
    • Our Campus Partners
  • Degrees & Programs
  • Admissions & Aid
    • How to Apply
    • Admission Pathways
    • Important Dates
    • Tuition & Financial Aid
    • Transferring Credits
    • Contact an Enrollment Adviser
  • Online Learning
    • About Online Learning
    • Online Learning Formats
    • Capstone Projects
    • Success Coaching
    • Technology Requirements
  • Stories & News
Home Home / Capstone Projects / How to Properly Administrate Mailbox Permissions in a Multi-Forest Active Directory – Exchange Architecture

How to Properly Administrate Mailbox Permissions in a Multi-Forest Active Directory – Exchange Architecture

Program: Applied Computing Bachelor's Completion
Host Company: QBE Insurance Inc.
Location: Sydney / London / Sun Prairie, Wisconsin (remote)
Student: Trent Schnell

QBE has a complex Active Directory Exchange environment. We have a resource AD forests that replicate accounts and groups to ExchangeForest.com. QBE’s On-Prem Exchange instance exists in ExchangeForest.com. Exchange stores mailbox permissions (FullAccess, Send on Behalf, and SendAs) in attributes on a mailbox’s Active Directory account. FullAccess and Send on Behalf are stored in the mailbox account’s msExchMailboxSecurityDescriptor AD attribute. SendAs is stored in the mailbox account’s Active Directory Advanced Security Permissions. The Outlook client reaches out to an Exchange Server using Security Identifiers (SID). Because there are replica groups and accounts, it’s important that the correct groups are granted mailbox access. Otherwise, Outlook and Exchange will incorrectly query Active Directory and will return access denied. The replica of the group in the Exchange Forest must be granted access to the mailbox. The original group in the resource forest must not. 

Let's Get Started Together

Apply Apply Schedule an Advising Call Schedule an Advising Call Request Info Request Info

This field is for validation purposes and should be left unchanged.
Are you interested in pursuing the degree or taking one or two courses?(Required)
Can we text you?(Required)

By selecting yes, I agree to receive updates about online degrees, events, and application deadlines from the Universities of Wisconsin.

Msg frequency varies depending on the activity of your record. Message and data rates may apply. Text HELP for help. You can opt out by responding STOP at any time. View our Terms and Conditions and Privacy Policy for more details.

Wisconsin Online Collaboratives will not share your personal information. Privacy Policy

Wisconsin Online Collaboratives

A Collaboration of the
Universities of Wisconsin

University of Wisconsin System

Pages

  • Our Degrees & Programs
  • How to Apply
  • Online Learning Formats
  • Our Campus Partners

Enrollment Advising

608-800-6762
learn@uwex.wisconsin.edu

Contact

780 Regent Street
Suite 130
Madison, WI 53715

Technical Support

1-877-724-7883
https://uwex.wisconsin.edu/technical-support/

Connect

  • . $name .facebook
  • . $name .linkedin
  • . $name .instagram
  • . $name .youtube

Copyright © 2026 Board of Regents of the University of Wisconsin System. | Privacy Policy