---

@adam deltinger wrote:
Hi!
I’m not able to write anything right now but I found maybe a little workaround script in this post here:

https://social.technet.microsoft.com/Forums/en-US/c4372940-51c6-4c72-8414-424793fd9ac0/list-shared-m...

Adam

---

Hi Adam,

Thanks for that I'll give it a try!

Hm, for this scenario perhaps a better way will be to do a message trace instead? I mean you might have shared mailboxes that nobody can access (no permissions granted), however they might still be receiving messages, isn't thing something you want to account for?

Well, here's a quick sample of what you can do with PowerShell:

Get-Mailbox -RecipientTypeDetails SharedMailbox |select PrimarySmtpAddress,@{n="FullAccess";e={ (Get-MailboxPermission $_.PrimarySmtpAddress | ? {($_.User -ne "NT AUTHORITY\SELF") -and ($_.IsInherited -ne $true) -and ($_.AccessRights -match "FullAccess") -and -not ($_.User -like "S-1-5*")}).User -join "," }} |? {!$_.FullAccess}

It's a one-liner, so a bit ugly, but should get the job done. Do note that it will take a long time to run if you have a large number of mailboxes. Also it doesn't cover any folder-level permissions, if you want these included best go with a full-blown script. I have few samples posted on the TechNet Gallery, you can easily adapt them.

@Vasil Michev I can't get your command above to work?

It returns the PrimarySMTPAddress for accounts where there are real users with FullAccess permission

@Vasil Michev 

I don't think that would return anything that is null.

Excellent, thanks for sharing! @Vasil Michev