I am doing some analysis of shared mailboxes and I am getting confused how some mailboxes are being monitored/accessed, if at all, due to who has access to them, or the lack of people
who have access to them should I say. For example, I ran this query to get a list of mailbox permissions:
Get-Mailbox | Get-MailboxPermission | where {$_.user.tostring() -ne "NT AUTHORITYSELF" -and $_.IsInherited -eq $false} | Select Identity,User,@{Name='Access Rights';Expression={[string]::join(', ', $_.AccessRights)}} | Export-Csv -NoTypeInformation mailboxpermissions.csv
which works great, and gives me who has full control, sendas etc to all mailboxes. However, on a couple there is literally nobody bar a standard exchange admin account with access. So I cannot see how anyone is monitoring these mailboxes. So my query is - is this command giving me a true picture of who can access the mailbox, or are there alternative ways of granting access to a mailbox that the output of this command does not reveal? The server is exchange 2010.