Enabling public folders for the on-demand scan

  • Article

[This topic is pre-release documentation and is subject to change in future releases. Blank topics are included as placeholders.]

If you are using FSE with Exchange Server 2010, a Client Access server (CAS) is required, and you must enable public folders for use with the on-demand scan. (Mailboxes are enabled by default for the on-demand scan.) FSE with Exchange Server 2010 uses Exchange Web Services to access the store, and Exchange Web Services does not support accessing public folders "out of the box." In order to work around this limitation, you must create a domain user, create a mailbox for that user, and then assign user rights to access public folders.

Note

You do not need to enable public folders when using FSE with Exchange Server 2007; they are automatically enabled upon installing FSE.

To create a domain user account and mailbox for accessing public folders

  1. Create a domain user account. Do not assign any special privileges like local admin or higher.

  2. Using the user account created in step 1, create a mailbox for accessing public folders.

    For the user account, assign the Read & execute and List folder contents privileges to the FSE program folder and its subfolders. For information about the location of the default FSE program folder on your operating system, see Default folders for FSE.

To enable public folders for the on-demand scan

  1. Click Start, point to All Programs, point to Microsoft Forefront Server Security, and then click Forefront Management Shell.

  2. Issue the following Windows PowerShell command:

    Set FSEOnDemandScan -EWSUsername SMTPAddress

    For the SMTPAddress parameter, type the e-mail address for the user account you created in the previous procedure. A valid e-mail address is required in order to scan public folders with the on-demand scan.

Other Resources

Scanning specific mailboxes and public folders for malware on-demand