< Day Day Up > |
Exchange Server 2003 Administrative Groups are created to group and maintain Exchange objects for reasons of permissions management and administrative distribution. For example, if an organization is based in three locations worldwide with three groups of Exchange administrators in each location, three separate Administrative Groups can be created and managed by each location to maintain servers and policies in the separate Administrative Groups. Exchange Server 2003 Administrative Groups are used to manage and maintain Routing Group containers, chat networks, public folder containers, and system policies. Each of these containers can house multiple objects and each can be managed individually. Also, administrative Group functionality differs depending on the functional level of the Exchange Server 2003 organization, as well as the type of Administrative Group that is created.
Mixed ModeWhen a new Exchange Server 2003 organization is installed, the Exchange organization is in Mixed Mode, by default. Mixed Mode facilitates interoperability between Exchange Server 2003 and Exchange 5.X servers. This also means that certain Administrative Group functionality is not available in a Mixed Mode environment. When Exchange Server 2003 is in a Mixed Mode environment, the following is true:
Native ModeAfter an Exchange organization function level is raised to Native Mode, Exchange Administrative Group functionality is enhanced and limitations of a Mixed Mode environment are no longer a consideration. Administrative Group functionality in Native Mode includes the following:
Administrative Groups ModelsAs we begin to grasp Administrative Groups and the purpose in both Native and Mixed Mode environments, the main design consideration is what model best fits your organizational needs. In this section, we review two very simple concepts of Exchange Server 2003 Administrative Group management. The first is a centralized management model, and the second is a decentralized one. Because Exchange Administrative Groups are basically collections of objects grouped together for purposes of management, the structure and administrative topology of your organization could dictate the best administrative model for your organization. CentralizedA centralized administrative model best fits an organization with fewer locations and a smaller centralized administrative staff. Because there is no need to distribute administrative permission, a centralized model is ideal for smaller organizations. This model can also be effective in larger organizations. When a larger organization requires individual Exchange functionality to be managed by different groups or user accounts, a centralized model can still be implemented. For example, CompanyABC is a larger organization with multiple Exchange servers and locations. However, the administrative model requires permissions to be configured for one group to manage the Routing Groups within the Administrative Group and another group of administrators to manage recipient policies. DecentralizedA decentralized administrative model is very effective when larger organizations have multiple offices and require administration based on each location. For example, CompanyABC has 40 Exchange servers with administrative staff in 10 separate locations. In this scenario, 10 Administrative Groups can be configured, and Exchange servers and recipient policies can be assigned to the appropriate Administrative Group for management. Creating Administrative Groups in Exchange Server 2003To create an Administrative Group in Exchange Server 2003, administrators must first enable the option to view Administrative Groups in the Exchange Systems Manager. To enable viewing Administrative Groups, open the properties page of the Exchange organization and complete the following steps:
To add additional Administrative Groups in Exchange Server 2003, select the Administrative Groups container in the Exchange Systems Manager. Begin by following these steps:
Delegating Control over Administrative GroupsTo manage and assign permission to Exchange Server 2003 Administrative Groups, administrators can leverage the Exchange Delegation Wizard. Using the Delegation Wizard at the Administrative Group level assigns one of three roles to the account or group being assigned permissions over the Administrative Group. These three levels of permission are as follows :
To assign roles and permissions over an Administrative Group using the Delegation Wizard, perform the following steps:
|
< Day Day Up > |