Get-ManagementRole
"Distribution Groups" | New-ManagementRole "Distribution Groups
No Delete"
Get-ManagementRole
"Mail Recipient Creation" | New-ManagementRole "Mail Recipient
Creation No Delete"
Get-ManagementRole
"Mail Recipients" | New-ManagementRole "Mail Recipients No
Delete"
Get-ManagementRole
"Distribution Groups No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-DistributionGroup"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Distribution Groups No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-DynamicDistributionGroup"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailContact"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-Mailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailUser"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-RemoteMailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Add-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Remove-MailboxPermission"} |
Remove-ManagementRoleEntry
Get-ManagementRole
"Mail Recipients No Delete" | Get-ManagementRoleEntry | Where
{$_.Name -like "Get-MailboxPermission"} | Remove-ManagementRoleEntry
New-RoleGroup
"HD" -Roles "Distribution Groups No Delete", "Mail
Recipient Creation No Delete", "Mail Recipients No Delete"
-Members jen
New-ManagementScope
"Executive Users Exclusive Scope" -RecipientRestrictionFilter {
department -eq "Manager" } -Exclusive
New-ManagementRoleAssignment
-Name "Managers" -SecurityGroup "Organization Management"
-Role "Mail Recipients" -ExclusiveRecipientWriteScope "Executive
Users Exclusive Scope"
-----------------------------
Get-ManagementRole "Mail Recipient Creation" | New-ManagementRole "Mail Recipient Creation No Delete"
Get-ManagementRole "Mail Recipients" | New-ManagementRole "Mail Recipients No Delete"
Get-ManagementRole "Distribution Groups No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-DistributionGroup"} | Remove-ManagementRoleEntry
Get-ManagementRole "Distribution Groups No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-DynamicDistributionGroup"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailContact"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-Mailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailUser"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipient Creation No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-RemoteMailbox"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Add-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Remove-MailboxPermission"} | Remove-ManagementRoleEntry
Get-ManagementRole "Mail Recipients No Delete" | Get-ManagementRoleEntry | Where {$_.Name -like "Get-MailboxPermission"} | Remove-ManagementRoleEntry
New-RoleGroup "HD" -Roles "Distribution Groups No Delete", "Mail Recipient Creation No Delete", "Mail Recipients No Delete" -Members jen
New-ManagementScope "Executive users exclusive scope" -Recipientrestrictionfilter { department -eq "manager" } -exclusive
New-managementroleassignment -name "managers" -securitygroup "Organization Management" -role "mail recipients" -exclusiverecipientwritescope "executive users exclusive scope"
Get-RoleGroup -Identity "organization*"
Get-RoleGroup -Identity "organization*" | fl
Get-RoleGroup -Identity "organization*" | Get-ManagementRole
Get-RoleGroup -Identity "organization*" | Get-ManagementRoleAssignment
Get-RoleGroup -Identity "organization*" | Get-ManagementRoleEntry
Get-ManagementRole
Get-RoleGroup -Identity "organization*" | fl -autosize
Get-RoleGroup -Identity "organization*" | ft -autosize
Get-RoleGroup -Identity "organization*" | ft -wrap
Get-RoleGroup -Identity "organization*" | Out-GridView
Get-RoleGroup -Identity "organization*" | fl | Out-GridView
Get-RoleGroup -Identity "organization*" | fl
Get-RoleGroup -Identity "organization*" | fl Roles
Get-RoleGroup -Identity "organization*" | fl RolesSelect-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Roles Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object Roles -ExpandProperty
Get-RoleGroup -Identity "organization*" | fl Select-Object Roles
Get-RoleGroup -Identity "organization*" | Select-Object Roles -ExpandProperty
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | fl name
Get-RoleGroup -Identity "organization*" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles
$g = Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles
($g).get(0)
New-ManagementRoleAssignment -SecurityGroup ALI -Role $g -ExclusiveRecipientWriteScope "executive users exclusive scope"
$g | New-ManagementRoleAssignment -SecurityGroup ALI -ExclusiveRecipientWriteScope "executive users exclusive scope"
Get-RoleGroup -Identity "organization management" | Select-Object -ExpandProperty Roles | ft name
Get-RoleGroup -Identity "ali" | Select-Object -ExpandProperty Roles | ft name
Get-ManagementScope -Exclusive:$true | fl
Get-ManagementRoleAssignment
Get-ManagementRoleAssignment managers
Get-ManagementRoleAssignment managers | Remove-ManagementRoleAssignment
