We have some enterprise clients which evaluate if they should use Exchange. They plan to outsource operational duties with the help of RBAC usage.
Now these questions arise:
- Which management roles (built-in) and cmdlets allow any access to mailbox content?
- Which management roles (built-in) and cmdlets allow any possibility to route mail traffic to (unauthorized) servers / recipients?
I cannot find any documentation which built-in management role have (direct or indirect) access to mailbox content and which ones do not have. I cannot find any kind of check-list or other material that might help for this issues.
Thanks in advance for the response.