CALL TO ACTION
A change in Exchange permissioning behavior may impact mobile communications and other add-on applications for Exchange. Shared and resource mailboxes may also be affe...
Updated Jul 01, 2019
Version 2.0
Blog Post
@Dean
Hello, Dean, I'm sorry the behavior change is causing you this amount of pain. For reasons discussed in the comments above, we were unable to make the behavior change optional.
And you are correct that we have modified the KB article several times, in response to user feedback. In fact, the article will be updated again soon with a new version of the script that allows custom filtering of accounts you don't want reported, and that suppresses the "Exchange Services" account, thus reducing the export file size for organizations that have used the Active Directory Connector.
We don't recommend modifying the adminSDHolder permissions because we don't recommend making administrator accounts into mailbox owners. The instructions for modifyng adminSDHolder permissions were removed from the article to avoid giving the impression that we recommend doing this.
Nonetheless, I left links in the article to several other articles about adminSDHolder, including one article with the instructions for granting a group Send As on all administrator accounts. These articles explain the security issues and our recommendations in some detail. If you wish to modify adminSDHolder to resolve the issues you are experiencing, you can follow those instructions, although, again, we do not consider it a best practice to do so. In the long run, it is better to follow the instructions in the article for granting an administrator access to a mailbox owned by a limited account.