Enabling access to archived public folder items in a cross-domain environment

Article:TECH146392  |  Created: 2010-12-16  |  Updated: 2013-01-18  |  Article URL http://www.symantec.com/docs/TECH146392
NOTE: If you are experiencing this particular known issue, we recommend that you Subscribe to receive email notification each time this article is updated. Subscribers will be the first to learn about any releases, status changes, workarounds or decisions made.
Article Type
Technical Solution


Subject

Issue



This document relates to public folder archiving in the following multiple domain configuration:

  • User accounts in one domain access mailboxes in a different domain by means of linked mailboxes.
  • A one-way cross domain trust exists, such that the mailbox domain trusts the user domain.
  • Public folder access is managed using group membership, and the groups are created in the mailbox domain, not in the user account domain.


 


Solution



To enable users to access archived public folder items, you need to configure the following registry setting on the Enterprise Vault server:
 

HKEY_LOCAL_MACHINE
 \SOFTWARE
 (\wow6432node)
   \KVS
    \Enterprise Vault
     \EnableLinkedAccountPermissionChecks

Give the setting a value of '1'.

The Enterprise Vault Auth Server then generates, a list of SIDs for the mailbox and user forests, and uses this combined list to complete permission checks. Enterprise Vault caches this list of SIDs.

If necessary, the SID cache can be managed using advanced registry settings. Contact Symantec Support for details.




Article URL http://www.symantec.com/docs/TECH146392


Terms of use for this information are found in Legal Notices