Applies to: Exchange Server 2007 SP3, Exchange Server 2007 SP2, Exchange Server 2007 SP1, Exchange Server 2007
Topic Last Modified: 2006-09-15

This topic provides an overview of the permissions that a user must have to administer a computer that has the Microsoft Exchange Server 2007 Hub Transport server role installed.

Hub Transport Server Role Permissions

The Hub Transport server role is deployed as a member server of an Active Directory directory service domain. You administer the Hub Transport server by using domain user accounts. You can use the Exchange Delegation Wizard or commands in the Exchange Management Shell to assign administrator roles to users and groups.

The permissions that are required to perform tasks depend on the scope of the effect of the action. Some tasks, such as configuration of a transport rule, have a global effect. This means that you configure the rule one time and every Hub Transport server in the organization enforces the rule. Tasks such as configuration of a Receive connector are performed on a per-server basis. This means that the connector is configured only on the specified server.

The correct transport agents must be installed and enabled on a Hub Transport server to apply global settings.
The Exchange Server Administrator role is delegated per server. You must delegate this role for each server that a user will administer.

Permissions That Are Required to Administer the Hub Transport Server

Table 1 lists the common administrative tasks that are performed on the Hub Transport server and the administrator role that is required to complete each task successfully. You can use this information to delegate roles based on your administrative model.

Table 1   Administrative tasks and administrator role requirements

Task Required administrator role

Backup and restore

Backup Operators

Enable and disable agents

Exchange Server Administrator

Configure Receive connectors

Exchange Server Administrator

Configure Send connectors

Exchange Organization Administrator

Configure transport rules

Exchange Organization Administrator

View queues and messages

Exchange View-Only Administrator

Manage queues and messages

Exchange Server Administrator

Create an Edge subscription file

Exchange Organization Administrator

Configure remote domains

Exchange Organization Administrator

Configure accepted domains

Exchange Organization Administrator

Establish e-mail address policies

Exchange Organization Administrator

Configure journaling

Exchange Organization Administrator

For More Information

For more information, see the following topics: