- An error has occurred, which probably means the feed is down. Try again later.
Exchange 2010 Mailbox move fails due to Active Directory insufficient permission
Trying to move user mailbox from Exchange 2003 to Exchange 2010
Summary: 1 item(s). 0 succeeded, 1 failed.
Elapsed time: 00:00:01
“Mailbox user name”
Failed
Error:
Active Directory operation failed on DC. This error is not retrievable. Additional information: Insufficient access rights to perform the operation.
Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0
The user has insufficient access rights.
Exchange Management Shell command attempted:
‘Mailbox’ | New-MoveRequest -TargetDatabase ‘Database Name’
Elapsed Time: 00:00:01
Checked for Inheritance on the mailbox and found it checked.
Solution :
Need to check for Inheritance on user object in Active Directory. Follow the below to check permission on user account in Active Directory:
- Go to Active Directory User and Computer or type dsa.msc in run prompt and locate the user account.
- Right click the user account and go to the properties > Security tab. If you don’t see the Security, use View > Advance Features.
- On Security tab, click Advance button
- Select the check box Allow Inheritable permissions from parent…
