It is possible that one of these issues will be encountered with mail-enabled Public Folders in Exchange 2007/2010 managed by POA:
- A mail-enabled public folder could be visible in Outlook's Global Address List as an entry with empty contact information, and when one tries to select this empty entry, the error message "The operation failed" appears.
After one grants the Send As permission to a user (to allow sending of email messages as a public folder), the user receives an NDR (Non-Delivery Report) when trying to send email messages with the public folder's email address specified in the "From:" field.
Delivery has failed to these recipients or distribution lists:
You are not allowed to send this message because you are trying to send on behalf of another sender without permission to do so. Please verify that you are sending on behalf of the correct sender, or ask your system administrator to help you get the required permission.
Incorrect permissions are configured in the Active Directory (AD) on the "Microsoft Exchange System Objects" container where Exchange creates all AD proxy objects for mail-enabled Public Folders.
To fix the issues, perform the following steps:
- Log on to the Exchange mailbox server using an account that is a member of the Domain Administrators group.
Start the "Command Prompt" tool and execute the following commands:
dsacls "CN=Microsoft Exchange System Objects,DC=Fabrikam,DC=Com" /I:P /G "Authenticated Users":GR
dsacls "CN=Microsoft Exchange System Objects,DC=Fabrikam,DC=Com" /I:T /G "Authenticated Users":RP;adminDisplayName
dsacls "CN=Microsoft Exchange System Objects,DC=Fabrikam,DC=Com" /I:T /G "Authenticated Users":RP;modifyTimeStamp
Do not forget to change the domain part of the "Microsoft Exchange System Object" container's distinguished name ("DC=Fabrikam,DC=Com") to the actual AD domain name.