RE: isolating users in an ISP environment

• From: "Periyasamy, Raj" <Raj.Periyasamy@xxxxxxxxxxxx>
• To: "[ExchangeList]" <exchangelist@xxxxxxxxxxxxx>
• Date: Fri, 30 Jan 2004 13:58:43 -0500

Mike, Instead of removing the Authenticated users and Everyone from the
permissions list, I would suggest creating separate user groups, and add
the users to that group, add the group to the permissions list and Deny
permissions. Removing everyone and Authenticated users from the
permissions list may cause unpredictable problems. If you have three
different domains, you can create three user groups, and add the users
to the corresponding groups. Then you can add all three groups to the
default address lists and deny all permissions. Add the corresponding
groups to their own address list view and assign List contents
permissions, and add the other two groups to the address list and deny
permissions.


Regards,

Raj

-----Original Message-----
From: A. Michael Salim [mailto:msalim@xxxxxxxxxxxx] 
Sent: Thursday, January 29, 2004 8:36 PM
To: [ExchangeList]
Subject: [exchangelist] RE: isolating users in an ISP environment


http://www.MSExchange.org/

Hello Raj,

> Mike, You need to create multiple address list views, and assign 
> permissions to them so that only intended people can view each address

> list. You should also restrict the permissions on the default address 
> book views so that all users cannot view them.

Thanks!  In the ESM under Recipients I see three address lists:

All Address Lists
All Global Address Lists
Offline Address Lists

The first one contains "All Contacts", "All Groups", "All Users",
"Public Folders".

The second one contains a separate address list for each of my hosted
domains.  No "Default Address List".

Is it the first one I need to mess with, i.e. the "All Address Lists" ?
And do I simply need to remove permissions for "Authenticated Users?
How about also for "ANONYMOUS USERS" and "Everyone"?  Are there any
negative ramifications to removing permissions for these?  Or is there a
different or better way?

Thanks again for your assistance.

best regards
Mike

> -----Original Message-----
> From: A. Michael Salim [mailto:msalim@xxxxxxxxxxxx]
> Sent: Wednesday, January 28, 2004 6:18 PM
> To: [ExchangeList]
> Subject: [exchangelist] isolating users in an ISP environment
>
>
> http://www.MSExchange.org/
>
> Greetings:
>
> I have an Exchange 2003 server on a Win2003 server.  It is in an "ASP"

> environment with many different internet domain names, each one being 
> a totally separate company.  It is important that one company does not

> see anything or is aware of anything about another company.  I have 
> followed all the ASP guidelines afaik.
>
> Most everything seems to be working, but when, as an Outlook 2003 
> client, if I do the following, I can see all the other groups, users 
> and contacts. Any ideas on what I might have missed in isolating each 
> company?
>
> Click on "Calendar"
>   Click on "Open a Shared Calendar" (it is a link under "My
Calendars")
>     A popup will appear.  Click in the "Name..." button
>       A "Select Name" popup will appear.
>
> In this popup, there is a pull-down menu for "Show Names from the...".

> If I choose any of the pull-down items like "All Contacts", "All 
> users", "All Groups", then sure enough I can see all the other 
> companies, their users etc.!
>
> How do I isolate these from one another so users in one company
> ("Group") cannot see anyone except their own groups, members and 
> contacts?
>
> best regards
> Mike
>
>
> ------------------------------------------------------
> List Archives: 
> http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
> Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
> Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> Leading Network Software Directory: http://www.serverfiles.com No.1
ISA
> Server Resource Site: http://www.isaserver.org Windows Security
Resource
> Site: http://www.windowsecurity.com/ Network Security Library:
> http://www.secinf.net/ Windows 2000/NT Fax Solutions:
> http://www.ntfaxfaq.com
> ------------------------------------------------------
>
>
> ------------------------------------------------------
> List Archives: 
> http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
> Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
> Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 ISA Server Resource Site: http://www.isaserver.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
>


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com No.1 ISA
Server Resource Site: http://www.isaserver.org Windows Security Resource
Site: http://www.windowsecurity.com/ Network Security Library:
http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------

Other related posts:

• » isolating users in an ISP environment
• » RE: isolating users in an ISP environment
• » RE: isolating users in an ISP environment
• » RE: isolating users in an ISP environment
• » RE: isolating users in an ISP environment

1. Home
2. exchangelist
3. Archive
4. 01-2004

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---