cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

Jeremy Bradshaw
Steel Contributor

‎Mar 03 2023 11:57 AM

‎Mar 03 2023 11:57 AM

EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

I have noticed something, only because some users raised it as an issue, but it seems to be widespread in Exchange Online.  With Set-CalendarProcessing we have -AllRequestInPolicy, -AllRequestOutofPolicy, and -AllBookInPolicy.  Each of these is a boolean and only one should be set to $true.  Each of these has a corresponding multi-valued property - RequestInPolicy, RequestOutofPolicy, and BookInPolicy.  The entries in these multi-valued properties are recipients whose meeting requests will be deemed In or Out of policy, or automatically accepted.

When AllRequestInPolicy is set to $true, and the other two All***Policy settings are set to false, it is expected that all requests are "In-Policy".  However in Exchange Online, no matter what, the forwarded approval request that goes to delegates always says "

This out-of-policy resource request was forwarded to you for your approval.

This request was forwarded to you for approval because the organizer doesn't have permission to book this resource."

 

In Exchange (on-premises) server, these forwarded requests would say "This in-policy resource request was forwarded to you for approval." and it shows the same reason (organizer doesn't have permission to book).

 

I'm just wondering - has anyone else observed this issue?  If so, any insights or additional info to share, maybe from Microsoft Support?

3,791 Views
0 Likes
8 Replies
Reply
8 Replies
Jeremy Bradshaw

‎Mar 03 2023 12:46 PM

‎Mar 03 2023 12:46 PM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

Note that I can see this behavior that I'm describing, described in this ultra-old webpage: https://mskb.pkisolutions.com/kb/949782. You can only see the page in Google's cache, and only the text-only version seems to work: http://webcache.googleusercontent.com/search?q=cache:hv6-EyhHv4YJ:https://mskb.pkisolutions.com/kb/9...

The problem is exactly what I've described, but was for Exchange 2007, and addressed officially with Update Rollup 4 for Exchange 2007 SP1. Seems like the issue is back. It's again, low priority, but clearly a broken product piece, in that every actually-in-policy request that is (properly) forwarded to delegates for request, is said in the forwarded request to be "out-of-policy". For detail-oriented delegates, they see this and wonder "what setting about this meeting is breaking the policy?", and the answer is "nothing". At least that is how it seems to me right now.
0 Likes
Reply
best response confirmed by Jeremy Bradshaw (Steel Contributor)
Jeremy Bradshaw

‎Mar 20 2023 07:35 AM

‎Mar 20 2023 07:35 AM

Solution

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

FYI, MS Support has confirmed that this is a known issue in EXO and the "PG" are aware of it. It's on a list of things to be fixed, with no ETA or info regarding the priority of this compared to other things that are broken.

I was initially told that this behavior is the design of the product, but I refuted that and supplied all the information I could about the true design of the product, which is:

 

There are many settings the dictate ‘in or out of policy’. In addition, there are 3 pairs of settings that involve who is allowed to make in-policy or out-of-policy requests. These and their definitions can be found online and confirm what I’m saying (Set-CalendarProcessing:(

  • BookInPolicy: A list of named meeting requestors whose requests will be automatically approved/accepted.
  • AllBookInPolicy: A true/false setting to make all users’ requests automatically approved/accepted.
  • RequestInPolicy: A list of named meeting requestors whose requests will be eligible for delegate approval as long as their requests are in-policy.
  • AllRequestInPolicy: A true/false setting to make all users’ requests eligible for delegate approval, as long as their requests are in-policy.
  • RequestOutOfPolicy: A list of named meeting requestors whose requests will be eligible for delegate approval, even when their requests are out-of-policy.
  • AllRequestOutOfPolicy: A true/false setting to make all users’ requests eligible for delegate approval, even when their requests are out-of-policy.

Of the 3 All***Policy true/false settings, only one is supposed to be set to True, and the other two set to False. By default AllBookInPolicy is true while AllRequestInPolicy and AllRequestOutOfPolicy are False.

 

Whether a meeting request is in or out of policy is determined by things like the following:

  • Meeting is not too short, not too long (vs MinimumMeetingDuration/MaximumMeetingDuration).
  • Meeting is not too far out in the future (vs BookingWindowInDays).
  • There aren’t more attendees than the resource’s capacity.
  • The meeting is a conflict / the series has conflicting occurrences (per AllowConflicts, MaximimumConflictInstances).
  • Etc.

A meeting is not deemed out-of-policy simply because the requestor isn’t named in the ***InPolicy settings and/or the All***InPolicy settings are not set to True.  The privilege to book or request to book are completely decoupled from the in-or-out-of-policy decision.

 

In Exchange Online, while this issue is still unresolved, all forwarded meeting requests (going to the resource delegates for approval) erroneously have the text in the message body stating the request is "out-of-policy", no matter if the request is truly in or out of policy.

 

0 Likes
Reply
Jeremy Bradshaw

‎Jun 02 2023 12:16 PM

‎Jun 02 2023 12:16 PM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

FYI - I was delighted to find out this morning that this issue has now been addressed. I've since tested and confirmed it myself. Thank you very much! My OCD will benefit from this.
1 Like
Reply
portwajn1337

‎Aug 18 2023 05:05 AM

‎Aug 18 2023 05:05 AM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

Thanks for the thread and persistance, Jeremy, at least one fellow OCD person is delighted too.
1 Like
Reply
Arshad_MS

‎Mar 09 2024 08:50 AM

‎Mar 09 2024 08:50 AM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

@Jeremy Bradshaw Looks like the issue is back

again. We are facing the exact same issue. If delegate books the conference room who is in RequestOutOfpolicy, all delegates get an approval email. Though there is no way to approve it, the meeting itself is appearing as Tentative on the Conference room. What was the fix for you? 

0 Likes
Reply
Jeremy Bradshaw

‎Mar 11 2024 04:34 AM

‎Mar 11 2024 04:34 AM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

Hi, to be honest it sounds like a slightly different setup and issue, but I might be able to help with a strategy change. I like putting the Resource Delegates in the BookInPolicy setting so that their requests are just auto accepted. Also, just to mention it, marking people as ResourceDelegates gives them Editor on the calendar and Send on Behalf rights - totally unrelated but I also rely on this for room delegates. That means we can do a consistent move for delegates, which is add them to both ResourceDelegates and BookInPolicy, and they're essentially all set.

The in/out of policy stuff is not 100% clear and it does sound like you've uncovered an unfinished or broken part of the product.

For this reason I suggest living in the in policy lane entirely. Let me know if this helps.
1 Like
Reply
Arshad_MS

‎Mar 11 2024 10:35 AM

‎Mar 11 2024 10:35 AM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

@Jeremy Bradshaw Thank you for your response. The issue is when somebody including delegate submits for requestoutofpolicy meeting, the organizer gets pending approval email and delegates get the meeting invite to accept/decline. If they accept, the organizer does not get any update that his requestoutofpolicy meeting is accepted nor calendar changes to busy from tentative not they get any update if the meeting is declined by the delegate. 
if I add a delegate to bookinpolicy, they will be auto approved if the meeting is only within the bookin window. 

0 Likes
Reply
Jeremy Bradshaw

‎Mar 11 2024 01:44 PM

‎Mar 11 2024 01:44 PM

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

Gotcha and understood on the need for request out of policy to be working. In this case I think your best move is MS Support. If you can reproduce the issue on demand that should certainly help.
0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by Jeremy Bradshaw (Steel Contributor)
Jeremy Bradshaw

‎Mar 20 2023 07:35 AM

‎Mar 20 2023 07:35 AM

Solution

Re: EXO: All delegate-approval-requiring meeting requests are deemed "Out-of-Policy"

FYI, MS Support has confirmed that this is a known issue in EXO and the "PG" are aware of it. It's on a list of things to be fixed, with no ETA or info regarding the priority of this compared to other things that are broken.

I was initially told that this behavior is the design of the product, but I refuted that and supplied all the information I could about the true design of the product, which is:

 

There are many settings the dictate ‘in or out of policy’. In addition, there are 3 pairs of settings that involve who is allowed to make in-policy or out-of-policy requests. These and their definitions can be found online and confirm what I’m saying (Set-CalendarProcessing:(

  • BookInPolicy: A list of named meeting requestors whose requests will be automatically approved/accepted.
  • AllBookInPolicy: A true/false setting to make all users’ requests automatically approved/accepted.
  • RequestInPolicy: A list of named meeting requestors whose requests will be eligible for delegate approval as long as their requests are in-policy.
  • AllRequestInPolicy: A true/false setting to make all users’ requests eligible for delegate approval, as long as their requests are in-policy.
  • RequestOutOfPolicy: A list of named meeting requestors whose requests will be eligible for delegate approval, even when their requests are out-of-policy.
  • AllRequestOutOfPolicy: A true/false setting to make all users’ requests eligible for delegate approval, even when their requests are out-of-policy.

Of the 3 All***Policy true/false settings, only one is supposed to be set to True, and the other two set to False. By default AllBookInPolicy is true while AllRequestInPolicy and AllRequestOutOfPolicy are False.

 

Whether a meeting request is in or out of policy is determined by things like the following:

  • Meeting is not too short, not too long (vs MinimumMeetingDuration/MaximumMeetingDuration).
  • Meeting is not too far out in the future (vs BookingWindowInDays).
  • There aren’t more attendees than the resource’s capacity.
  • The meeting is a conflict / the series has conflicting occurrences (per AllowConflicts, MaximimumConflictInstances).
  • Etc.

A meeting is not deemed out-of-policy simply because the requestor isn’t named in the ***InPolicy settings and/or the All***InPolicy settings are not set to True.  The privilege to book or request to book are completely decoupled from the in-or-out-of-policy decision.

 

In Exchange Online, while this issue is still unresolved, all forwarded meeting requests (going to the resource delegates for approval) erroneously have the text in the message body stating the request is "out-of-policy", no matter if the request is truly in or out of policy.

 

View solution in original post

0 Likes
Reply