Managing members in shared mailboxes "responsible person/owner", similar to distribution lists

%3CLINGO-SUB%20id%3D%22lingo-sub-2701817%22%20slang%3D%22en-US%22%3EManaging%20members%20in%20shared%20mailboxes%20%22responsible%20person%2Fowner%22%2C%20similar%20to%20distribution%20lists%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2701817%22%20slang%3D%22en-US%22%3E%3CP%3EIs%20there%20a%20possibility%20to%20manage%20the%20members%20of%20shared%20mailboxes%20from%20a%20responsible%20person%2Fowner%20of%20the%20shard%20mailbox%2C%20as%20it%20is%20possible%20with%20distribution%20lists%20or%20M365%20Groups%3F%3CBR%20%2F%3EI%20have%20a%20customer%20who%20wants%20to%20have%20the%20shared%20mailbox%20managed%20by%20%22normal%22%20users%20without%20a%20helpdesk%2FIT%20admin%20with%20elevated%20rights%20having%20to%20do%20it.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%20and%20best%20regards%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMarc%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2701817%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%20Online%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EExchange%20Server%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EHybrid%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2703418%22%20slang%3D%22en-US%22%3ERe%3A%20Managing%20members%20in%20shared%20mailboxes%20%22responsible%20person%2Fowner%22%2C%20similar%20to%20distributi%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2703418%22%20slang%3D%22en-US%22%3EDepends%20on%20how%20you%20are%20using%20the%20shared%20mailbox.%20If%20delegating%20Full%20Access%2FSend%20As%2FSend%20on%20behalf%20of%20permissions%2C%20those%20are%20only%20manageable%20by%20someone%20with%20admin%20access.%20You%20can%20however%20create%20a%20scoped%20RBAC%20role%20that%20allows%20users%20to%20manage%20these%20settings.%3CBR%20%2F%3EIf%20you%20are%20just%20granting%20folder-level%20access%2C%20anyone%20with%20Owner%20permissions%20will%20be%20able%20to%20make%20to%20add%2Fremove%20users.%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2704635%22%20slang%3D%22en-US%22%3ERe%3A%20Managing%20members%20in%20shared%20mailboxes%20%22responsible%20person%2Fowner%22%2C%20similar%20to%20distributi%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2704635%22%20slang%3D%22en-US%22%3EHello%20Vasil%3CBR%20%2F%3EThanks%20for%20the%20tip.%3CBR%20%2F%3EI%20have%20created%20a%20ManagementScope%20with%20filter%20on%20shared%20mailboxes%20and%20then%20a%20role%20with%20'Mail%20Recipient'%20permissions%20for%20this%20scope.%3CBR%20%2F%3EThe%20user%20sees%20a%20lot%20of%20information%20in%20the%20Exchaneg%20Admin%20Center%2C%20but%20can%20now%20only%20edit%20the%20SharedMailboxes....%3CBR%20%2F%3ENice%20solution%3CBR%20%2F%3E%3CBR%20%2F%3EThanks%20a%20lot%3C%2FLINGO-BODY%3E
Occasional Contributor

Is there a possibility to manage the members of shared mailboxes from a responsible person/owner of the shard mailbox, as it is possible with distribution lists or M365 Groups?
I have a customer who wants to have the shared mailbox managed by "normal" users without a helpdesk/IT admin with elevated rights having to do it.

 

Thank you and best regards

 

Marc

3 Replies
Depends on how you are using the shared mailbox. If delegating Full Access/Send As/Send on behalf of permissions, those are only manageable by someone with admin access. You can however create a scoped RBAC role that allows users to manage these settings.
If you are just granting folder-level access, anyone with Owner permissions will be able to make to add/remove users.
Hello Vasil
Thanks for the tip.
I have created a ManagementScope with filter on shared mailboxes and then a role with 'Mail Recipient' permissions for this scope.
The user sees a lot of information in the Exchaneg Admin Center, but can now only edit the SharedMailboxes....
Nice solution

Thanks a lot

@Marc Gehri 

 

To create/manage a shared mailbox, one should have Global Admin or at least Recipient Management role in Exchange, having Full Access permissions means owner of the Shared Mailbox as they can log in to the mailbox, and do a lot of things, create calendar items; read, view, delete, and change email messages; create tasks and calendar contacts. However, a user with Full Access permission can't send email from the shared mailbox unless they also have Send As or Send on Behalf permission., but cannot send emails from that shared mailbox, nor can change the membership, by creating a separate role for managing only the shared mailbox membership