Impersonation
Application Impersonation can be used by the CloudM Migrate to impersonate users so knowledge of their credentials is not required. In order to setup Application Impersonation using PowerShell, the following steps should be carried out.
To apply the Application Impersonation role to your admin account, run the following command in a PowerShell session on your Exchange server. Replace ADMIN
with the email address of your admin user.
Exchange 2007
- Start the Exchange PowerShell Console
- Run the following commands in the PowerShell session, replacing the admin email with the email address of the user you will use to perform migrations
Delegation
To set up delegated access, do the following:
- You should choose or create a user that will be given delegated access to all mailboxes.
- Start an elevated PowerShell session on your Exchange server.
-
Run the following command in the PowerShell session, replacing ADMIN with the user that will perform the migration:
Get-Mailbox -ResultSize unlimited -Filter {(RecipientTypeDetails -eq 'UserMailbox') -and (Alias -ne 'ADMIN')} | Add-MailboxPermission -User ADMIN -AccessRights fullaccess -InheritanceType all
Enabling Basic Authentication
It often useful to enable Basic authentication for the Exchange Web Services endpoint, as to use Ntlm you must be logged into the workstation running the migration tool as the migration admin user. Run the following to enable Basic authentication, replacing the name of the site if required.