Good morning, I wanted to see if a shared mailbox could be configured as read-only, that is, no user can delete emails or a little more advanced that some users can delete and others cannot. Thanks
Good morning, I wanted to see if a shared mailbox could be configured as read-only, that is, no user can delete emails or a little more advanced that some users can delete and others cannot. Thanks
Use folder-level permissions instead of Full Access. Add-MailboxFolderPermission is the cmdlet, or you can do it manually via Outlook/OWA if you prefer.
Thanks for the reply. And the permission so that they cannot delete emails as it would be?
Its neccesary configure the permission for each user?
Its neccesary configure the permission for each folder?
You can configure them per user, group or "default". And yes, it needs to be set on each individual folder as necessary. Refer to the cmdlet help for more info: https://docs.microsoft.com/en-us/powershell/module/exchange/add-mailboxpermission?view=exchange-ps
Agree with michev's suggestion. You can configure the Reviewer permission of each folder for Default users like below:
Add-MailboxFolderPermission -Identity user01@contoso.com:\Inbox -User Default -AccessRights Reviewer

Thanks to both of you for the reply.
I just tried it but it wouldn't work. I want to clarify that it is a shared mailbox, not a mailbox.
What exactly doesnt work? The cmdlet supports shared mailboxes just fine.
I do it manually via Outlook/OWA

but the member of the shared mailbox still can delete mails
Check what other permissions they might have, including Full access permissions or individual folder-level entries (the Default entry only applies to users not listed otherwise).
It has been a while, how is everything going? Have you ever check if there is any other permissions they might have addition to the Reviewer permission you granted?
I tried test in my Outlook and it could work fine like below, prompt for permission when trying to delete the messages in shared folder:


Hi, I check that there were no other permissions besides the default for several members but they can still delete emails
Could it have something to do that we sync our AD and Exchange with AD Connect against Office365?
Hi @SebastianMusto-7309,
As I know, that should not be related to your issue.
May I know what specific Exchange version are you using? And would you mind creating a fresh new shared mailbox and do the operations we mentioned above for test so that we could exclude possible factors as much as possible?
Hi @SebastianMusto-7309,
It has been a while, how is everything going?
If you have any update about this issue, please feel free to post back.
10 people are following this question.