Introduction Role Based Access Control (RBAC) is the new permissions model in Microsoft Exchange Server 2010. With RBAC, you don't need to modify and manage access control lists (ACLs), which was...
Published Nov 17, 2009
Version 1.0
Blog Post
Hey, Matt. With all due respect I see the vision, but it just doesn't work for larger orgs with highly decentralized administration. While RBAC is no doubt leaps and bounds better than what we had before, for some it will only move the permissioning spray from one area to another and become unmanageable. I think the Exchange team needs to take another look at things and perhaps steal a chapter from AD OU design, and by that I mean understand one way works for some deployments and another way works for others. I had high hopes for RBAC (still do), but without being able to scope directly to groups or being able to use databases as a scoping object, it doesn't get us much. <whimpers>