Symptoms

Mailboxes are not showing up in EAC and EMS on Exchange 2013

  • Mailboxes are not Disconnected
  • Exchange attributes are present
  • Enabling the mailbox doesn’t work
  • Even creating a new mailbox for the existing user don’t work

Error message:

Active Directory operation failed on DC.domain.com. This error is not retriable. Additional information: Insufficient access rights to perform the operation. Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

Cause

Allow inheritable permission was missing on the OU where the mailboxes are present

Resolution

Enabled the “Allow inheritable permission for that OU”

  1. Turn on Advanced features in Active Directory Users and Computers -> View -> Advanced Features
  2. Right click on the OU where the mailboxes are present
  3. Go to Properties -> Security Tab -> Advanced
  4. On the left bottom of the wizard, click on “Enable Inheritance”
  5. Click on “Apply” & “Ok”
  6. Mailboxes appeared in EAC and EMS

Though this issue and resolution looks straight forward and simpler, this would be more complicated in the environments where it has multiple OU’s and sub OU’s are created for managing the user accounts and permissions.

Happy learning!! 🙂

By Ashok M

Microsoft Certified Professional with key technical skills including Microsoft Exchange, Windows Server, Microsoft Azure, Office 365, Intune, EMS, Skype for Business, Active Directory, ADFS and has got more exposure to Hyper V, System Center Configuration Manager, Virtualization, Video conferencing room systems, SQL. Have experience in design, implementation, migration & support for various Microsoft infrastructure products. Currently working as "Implementation Engineer" with the UAE's first tier IV Data Center design certification in the region.

Leave a Reply

Your email address will not be published. Required fields are marked *