The nature of advanced training is that the people who attend often pose some pretty thought-provoking and interesting questions. Paul Robichaux and I recently ran an Exchange 2010 Maestro event where we had some intense discussions about various aspects of Exchange deployment at the end-of-event wrap-up. And then the question was asked: “Can I use Exchange 2010’s search capabilities to find passwords that people have stored in their mailboxes"?” Of course, the answer is “absolutely!” Exchange 2010 (and indeed, the search capabilities that Office 365 administrators can use for their tenant domain) doesn’t apply restrictions to the kind of searches that administrators execute on the basis that Exchange assumes that people who hold the necessary privileges that are required to execute searches against user mailboxes know what they are doing. And, possibly more importantly, have been granted that ability by a company in the full knowledge that some confidential information will probably come to light during a search. After all, isn’t that what searching is all about? Exchange protects users against casual searching – the kind of thing that some officials who have access to confidential information do when they look up the tax records or other information held by governments and public authorities – by requiring administrators to be members of the Discovery Management role management group before they can create and execute mailbox searches.
.png?width=100&auto=webp&quality=80&disable=upscale "Picture of John Savill")
.jpg?width=700&auto=webp&quality=80&disable=upscale)
