Hello,
I have created an RBAC role for a group of domain user to be able to add an email alias to a single mailbox. I created something like below:
role: email alias role
Scope: mailbox1 scope
Group: mailbox1 operator group
New-ManagementScope -Name "mailbox1 scope" -RecipientRestrictionFilter { Name -eq "mailbox1")
New-RoleGroup -Name "mailbox1 operator group" -Roles "email alias role" -CustomRecipientWriteScope "mailbox1 scope"
Now when I tried to add an alias to mailbox1 as a user that is added to the mailbox1 operator group, I'm getting an error saying:
"Failed because it's out of the current user's write scope. Mailbox1 isn't within tour current write scopes. Can't perform operation."
Should I be using the the email address on setting the scope to a single mailbox?
-RecipientRestrictionFilter { Name -eq "mailbox1@domain.com")
I also notice that the mailbox name is "Mailbox 1"and set the scope to mailbox1 could that be the issue? Is there a way I can edit the scope?
thanks for any response.