1. Home
  2. Docs
  3. Install CloudPanel
  4. Prepare Microsoft Exchange
  5. Secure the Offline Address Book

Secure the Offline Address Book

The following two commands should be run once per Exchange installation to remove the MS-Exch-Download-OAB extended right from the root OAB container. This prevents all subsequently created OABs from inheriting this extended right.

Each of the following examples assumes the domain being used by the hoster is called fabrikam.com, you need to change the examples shown below to refer to your own deployment.

$BaseOABContainer="CN=Offline Address Lists,CN=Address Lists Container,CN=First Organization,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=Fabrikam,DC=com"
Get-ADPermission $BaseOABContainer -User "NT Authority\Authenticated Users" |WHERE extendedrights -match "ms-exch-download-oab" | Remove-ADPermission
Was this article helpful to you? Yes No

How can we help?