mailstore-notes.dwlab.me

Grant a user read access to all archives via the audit user function

dave

MailStore allows the admin user to unblock their access to the archive, granting them access to all archives, if admin access to the archive is unblocked.

It may be useful to grant only Read access to all archives without granting full admin permissions.

  1. Launch the MailStore Server Service Configuration tool from the desktop.

  2. Restart MailStore Server in Safe mode to prevent background tasks and end-user access to the archive.

  3. Log in using the admin account to MailStore Client.

  4. Navigate to Administrative Tools > Users and Privileges > Users.

  5. Check if the user is set to Directory Services or MailStore-Integrated.

    If the user is set to MailStore-Integrated:

    1. Note the settings in their user account.
    2. Assign a new password to the user, which will be the password set for the auditor user.

    This is not necessary if the user is set to Directory Services as these settings will be obtained from the directory service.

  6. Delete the user.

    Note: this will not delete their archive, but any archiving profiles associated with their account will be lost.

  7. Go to Administrative Tools > Compliance > Compliance General, and create an auditor user.

  8. Set a password for the auditor user.

    If you use Directory Services, use a password generator to create a strong password, and do not save this password.

    If this was a MailStore-Integrated user, set their password.

  9. Return to the Users panel.

  10. Rename the auditor user to the target user's name.

  11. Return any needed user settings

    For a Directory Services user:

    1. Change the Authentication field to MailStore Integrated.

    2. Go to Administrative Tools > Users and Privileges > Directory Services and click Synchronize Now to update the account details.

    For a MailStore-Integrated user:

    1. Set the user's E-mail address.
    2. Update any settings as needed.

  12. Return to the configuration tool and restart MailStore in normal mode.

Once the user logs in, they will have read-only access to all archives.

Note that this applies permissions to all archives that exist at the time of the change. New archives will not automatically grant the user access, permission must be manually added for new archives.