O365 Dynamic distribution Group to Room/Equipment Mailbox full Access

%3CLINGO-SUB%20id%3D%22lingo-sub-132442%22%20slang%3D%22en-US%22%3EO365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-132442%22%20slang%3D%22en-US%22%3E%3CP%3EI%20created%20a%20dynamic%20distribution%20group%20for%20all%20users%20inside%20our%20organization.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EI%20have%20a%20equipment%20mailbox%20that%20i%20want%20to%20assign%20full%20access%20rights%20to%20all%20users%20in%20our%20organization%2C%20and%20also%20any%20new%20users%20that%20get%20created%20automatically.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EI%20tried%20to%20assign%20the%20%3CSTRONG%3Edynamic%20group%20%22allusers%22%3C%2FSTRONG%3E%20to%20the%20delegates%20of%20the%20the%20equipment%20mailbox%20but%20it%20won't%20recognize%20the%20dynamic%20group...%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EI%20tried%20this%20with%20a%20shared%20mailbox%20as%20well%2C%20and%20it%20won't%20recognize%20the%20dynamic%20group%20either.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAny%20idea's%20how%20I%20can%20do%20this%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-132442%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EExchange%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-133122%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-133122%22%20slang%3D%22en-US%22%3E%3CP%3EWhat%20is%20the%20issue%20that%20you%20are%20trying%20to%20solve%20here%3F%20I%20certainly%20cannot%20think%20of%20many%20reasons%20to%20have%20Full%20Access%20permissions%20on%20an%20equipment%20mailbox%2C%20in%2099%25%20of%20the%20time%20simply%20adjusting%20the%20Calendar%20permissions%20is%20enough.%20And%20that%20can%20be%20done%20by%20changing%20the%20%22Default%22%20level%2C%20no%20need%20to%20add%20any%20other%20entries.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-133088%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-133088%22%20slang%3D%22en-US%22%3E%3CP%3EYou%20would%20need%20to%20create%20a%20script%20that%20runs%20on%20a%20schedule%20to%20add%20users%20the%20the%20security%20group.%20Membership%20is%20not%20dynamic%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-133061%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-133061%22%20slang%3D%22en-US%22%3E%3CP%3EThanks.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ECan%20a%20mail-enabled%20security%20group%20be%20rigged%20to%20automatically%20add%20all%20users%2C%20and%20future%20users%20that%20get%20added...or%20do%20I%20have%20to%20add%20to%20it%20each%20time%20I%20have%20a%20new%20user%3F%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThanks%2C%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-132634%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-132634%22%20slang%3D%22en-US%22%3E%3CP%3EYou%20can't.%20Dynamic%20DGs%20are%20NOT%20a%20security%20principal%2C%20you%20cannot%20use%20them%20for%20delegating%20permissions.%20Use%20a%20mail-enabled%20security%20group%20instead.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-999205%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-999205%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F58%22%20target%3D%22_blank%22%3E%40Vasil%20Michev%3C%2FA%3E%26nbsp%3BI%20believe%20there%20is%20a%20user%20case%20here%20for%20setting%20mailbox%20folder%20permissions.%20For%20example%2C%20you%20would%20like%20a%20local%20team%20or%20group%20to%20have%20a%20higher%20permission%20such%20as%20viewing%20calendars%20with%20titles%20and%20locations%20where%20the%20rest%20of%20the%20org%20would%20have%20a%20lower%20level%20of%20access.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20feel%20like%20i'm%20back%20in%20the%201990s%20creating%20a%20script%20to%20populate%20a%20static%20group.%20Anyways...%20I'll%20get%20my%20hyper%20colour%20shirt%20on%20and%20head%20on%20back%20to%20the%2090s.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHmmm....%20Maybe%20a%20dynamic%20O365%20will%20work%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-999305%22%20slang%3D%22en-US%22%3ERe%3A%20O365%20Dynamic%20distribution%20Group%20to%20Room%2FEquipment%20Mailbox%20full%20Access%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-999305%22%20slang%3D%22en-US%22%3E%3CP%3Ecomputer%20says%20no...%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20468px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F156090i69E0B4B71B5E880F%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20alt%3D%22Untitled1.png%22%20title%3D%22Untitled1.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Occasional Contributor

I created a dynamic distribution group for all users inside our organization.

 

I have a equipment mailbox that i want to assign full access rights to all users in our organization, and also any new users that get created automatically.

 

I tried to assign the dynamic group "allusers" to the delegates of the the equipment mailbox but it won't recognize the dynamic group...

 

I tried this with a shared mailbox as well, and it won't recognize the dynamic group either.

 

Any idea's how I can do this?

6 Replies
Highlighted

You can't. Dynamic DGs are NOT a security principal, you cannot use them for delegating permissions. Use a mail-enabled security group instead.

Highlighted

Thanks.

 

Can a mail-enabled security group be rigged to automatically add all users, and future users that get added...or do I have to add to it each time I have a new user?

 

Thanks,

Highlighted

You would need to create a script that runs on a schedule to add users the the security group. Membership is not dynamic

Highlighted

What is the issue that you are trying to solve here? I certainly cannot think of many reasons to have Full Access permissions on an equipment mailbox, in 99% of the time simply adjusting the Calendar permissions is enough. And that can be done by changing the "Default" level, no need to add any other entries.

Highlighted

@Vasil Michev I believe there is a user case here for setting mailbox folder permissions. For example, you would like a local team or group to have a higher permission such as viewing calendars with titles and locations where the rest of the org would have a lower level of access. 

 

I feel like i'm back in the 1990s creating a script to populate a static group. Anyways... I'll get my hyper colour shirt on and head on back to the 90s. 

 

Hmmm.... Maybe a dynamic O365 will work?

Highlighted