Configuring Impersonation for ndMail



To retrieve and file email documents for subscribed users, ndMail requires the ability to impersonate users in the Exchange domain. Impersonation is enabled for a service account using RBAC (role-based access control) on the Exchange Server.

To configure impersonation on Exchange Server 2013, 2016
  1. Open the web-based Exchange Admin Center (EAC) of the Exchange Server.
  2. Click the Permissions tab.
  3. To create a new administrative role, click the plus.png icon.
  4. In the new role group dialog box:
    a. Enter a name for the new administrative role.
    b. Under Roles, click the plus.png icon, and then select ApplicationImpersonation.
    c. Under Users, click the plus.png icon.
    d. To collect the mailbox data from Exchange Server (SyncUser), select the account, and then click OK.
    e. Click Save.

NOTE: Configure Exchange 2013 and 2016 using the Exchange Management Shell cmdlets to control access management for EWS applications and the RBAC for impersonation. For more information, see the following table, which includes steps and links on how to use Exchange Management Shell - a PowerShell-enabled command-line processor with command handlers for Exchange.

Exchange Server version Link
Exchange 2007
Exchange 2010
Exchange 2013/2017

NOTE: Do not install the New-ManagementRoleAssignment cmdlet in your Exchange Management Shell. To add the cmdlet, type Add-PSSnapin Microsoft.Exchange.Management.PowerShell.E2010 in the Exchange Management Shell, and then press Enter.

Back to Top

Was this article helpful?
0 out of 0 found this helpful
Powered by Zendesk