Use administrator role groups to assign users permissions to perform specific administrative tasks, such as creating new mailboxes, resetting passwords, or troubleshooting the Outlook Web App Options page of another user.
To assign users permissions to perform specific administrative tasks, you add the user as a member of the administrator role group for those administrative tasks. Here’s how:
- In the Exchange Control Panel, select Manage My Organization > Roles & Auditing > Administrator Roles.
- Select the role group that you want to add the user to, and then click Details.
- Under Members, click Add.
- In the Select Members dialog box, select the user, security group, or role group. You can search for a name by typing all or part of a display name, and then clicking . You can also sort the list by clicking the Name or Display Name column headings.
- Click Add.
- Click OK to return to the role group page.
- Click Save to save the change to the role group.
The new member is displayed under Members in the details pane for the selected role group.
You can also remove permissions by removing a user from a role group:
- Select the role group that you want to remove the user from, and then click Details.
- In the Members list, select the user, security group, or role group and click Remove. You can also select more than one user to remove.
- Click Save to save the change to the role group and return to the role group page.
The user is no longer listed in the details pane for that role group.
After you add or remove members from the role group, the affected users may have to sign out and then sign in again to see the change in their administrative rights.
You can also add, or nest, a role group as a member of another role group. The nested group, and its members, inherits the user rights of the role group of which it is a member. However, do this only after careful planning and when nesting a role group supports your organization’s administrative model.