Before discovering and monitoring Exchange Server resources, ensure that the user account running the AppManager agent service (netiqmc) has the following memberships and permissions:
Membership in the Exchange View-Only Administrators group (for Exchange Server 2007)
Membership in View-Only Organization Management group (for Exchange Server 2010 or later)
Membership in the Local Administrators group on the Exchange Server
Permission to access the File Share Witness folder
In addition to the minimum permissions required for any role, following are the specific Exchange Server roles that require additional permissions:
Component |
Required Permissions and Memberships for Exchange Server 2007 |
Required Permissions and Memberships for Exchange Server 2010 or later |
---|---|---|
Client Access Server role |
|
|
Edge Transport Server role |
|
|
Hub Transport Server role |
|
|
Mailbox Server role |
|
|
Unified Messaging Server role |
|
|
Exchange Best Practices Analyzer tool (for all Exchange Server roles) |
|
|
Directory Server |
|
|