Add Members to a Role Group

Applies to: Exchange Server 2010

To give a user the permissions that are granted by a role group, you need to add the user's mailbox as a member of the role group. For more information about role groups in Microsoft Exchange Server 2010, see Understanding Management Role Groups.

Looking for other management tasks related to administrators and specialist users? Check out Managing Administrator and Specialist Users.

Prerequisites

This topic makes use of pipelining, variables, recipient filters, and the ForEach statement. For more information about these concepts, see the following topics:

What Do You Want to Do?

  • Use the Shell to add a mailbox as a member of a role group
  • Use the Shell to use a filter to add a group of similar users as members of a role group

Use the Shell to add a mailbox as a member of a role group

You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Role groups" entry in the Role Management Permissions topic.

Note

You can't use the EMC to add a mailbox as a member of a role group.

To add a mailbox as a member of a role group, use the following syntax.

Add-RoleGroupMember <role group name> -Member <member>

This example adds the mailbox Robert to the Seattle Administrators role group.

Add-RoleGroupMember "Seattle Administrators" -Member Robert

For detailed syntax and parameter information, see Add-RoleGroupMember.

Use the Shell to use a filter to add a group of similar users as members of a role group

You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Role groups" entry in the Role Management Permissions topic.

Note

You can't use the EMC to use a filter to add a group of similar users as members of a role group.

You can use the Get-User cmdlet to add members to a role group if the mailboxes match the criteria you specify in a filter. The Add-RoleGroupMembers cmdlet doesn't accept the object type provided by the Get-User cmdlet, so you need to pass the data through the ForEach statement first.

To add mailboxes that meet the criteria you specify as members of a role group, do the following.

  1. Collect the mailboxes that match the criteria you specify using the Get-User command with the Filter parameter and store the mailboxes in a variable.

    $Mailboxes = Get-User -Filter { RecipientType -Eq "UserMailbox" -and <filter criteria> }
    
  2. This is an optional step. View the list of mailboxes stored in the $Mailboxes variable.

    $Mailboxes
    
  3. Pass the mailboxes stored in the $Mailbox variable to the Add-RoleGroupMember cmdlet that's running in a ForEach statement.

    $Mailboxes | ForEach { Add-RoleGroupMember <role group name> -Member $_.Name }
    

This example adds all the mailboxes that are in the Sales IT Staff department to the Sales Help Desk role group.

$Mailboxes = Get-User -Filter { RecipientType -Eq "UserMailbox" -and Department -Eq "Sales IT Staff" }
$Mailboxes | ForEach { Add-RoleGroupMember "Sales Help Desk" -Member $_.Name }

For detailed syntax and parameter information, see Add-RoleGroupMember.

Other Tasks

After you add a member to a role group, you may also want to: