This article refers to Barracuda Message Archiver Legacy Release firmware or higher, and Microsoft Exchange Server 2007, 2010, 2013, 2016, and 2019.
See also How to Enable RPC over HTTP Connectivity.
An email service account provides Exchange Server directory permissions to grant the Barracuda Message Archiver unrestricted access to all mailboxes. Create an email service account for Exchange import integration and message attachment stubbing.
Microsoft Exchange 2007
Use the following steps to set the permissions on Exchange 2007:
- Log into the Exchange Server as the administrator.
- From the Start menu, go to Start > Programs > Microsoft Exchange Server 2007 > Exchange Management Shell.
- At the command prompt, enter the following command where Exchange2007 is the name of the Microsoft Exchange 2007 Server and CUDASVC is the name of the Barracuda service account, and then press Enter:
get-mailboxserver Exchange2007 | add-adpermission -user CUDASVC -accessrights GenericRead, GenericWrite -extendedrights Send-As, Receive-As, ms-Exch-Store-Admin
In the Exchange Management Shell, enter the following command to add View-Only Administrator permissions, replacing CUDASVC with the name of the Barracuda service account:
add-exchangeadministrator CUDASVC -role ViewOnlyAdmin
Continue with Microsoft Exchange Server 2007 Operations.
Microsoft Exchange 2010 and Newer
Use the following steps to set the permissions on Exchange where CUDASVC is the name of the Barracuda service account:
- Log into the Exchange Server as the administrator.
- From the Start menu, go to Start > Programs > Microsoft Exchange Server > Exchange Management Shell.
- At the command prompt, enter the following command, and then press Enter:
Get-MailboxDatabase | Add-ADPermission -User "CUDASVC" -AccessRights ExtendedRight -ExtendedRights Receive-As, ms-Exch-Store-Admin
- Next, enter the following command, and then press Enter:
Add-RoleGroupMember "Organization Management" -Member "CUDASVC"
Use the following steps to apply permissions for the service account where database name is the name of the specific Mail Store database rather than all databases:
- Log into the Exchange Server as the administrator.
- From the Start menu, go to Start > Programs > Microsoft Exchange Server > Exchange Management Shell.
- At the command prompt, enter the following command, and then press Enter:
Get-MailboxDatabase -Identity database name | Add-ADPermission -User "CUDASVC" -AccessRights ExtendedRight -ExtendedRights Receive-As, ms-Exch-Store-Admin
Continue with Microsoft Exchange Server Operations based on your Exchange Server: