Get a glimpse of how you can power your data-driven sales while improving sales efficiency. Join our weekly demo webinar, Wednesday's 1:00PM EST ►

How do I set up a Delegated Service Account in Exchange?

Overview:

In order to manage aspects of your users calendar, an account can be created that can act on behalf of your users and thereby simplify their experience.  This Service Account is used by the software to access your users exchange information and allows ZynBit to act on their behalf.  After setting up this account, you can then grant it the rights to act upon each user’s data and thereby automate much of the routine account configuration and setup for your ZynBit users.  Note that the Delegated Service Account can manage calendar and tasks only (not email syncing).

The following information is provided to assist in setting up the Exchange Service Account.  ZynBit has developed a successful process for creating and connecting an Exchange Service account as detailed below.  If your specific environment has unique issues or requirements, you may need to consult with an Exchange expert for additional help.  ZynBit can recommend a firm with this type of experience if needed.  Multi-Factor Authentication will prevent the service account from connecting and must be disabled for this account.

Prerequisites:

 

Creating a Delegated Service Account: 

(Items in italics can be replaced with your own values)

 

  1. Your Exchange Administrator should create a Service account by opening the Exchange Admin Center and clicking on ‘recipients’ in the navigation panel. You should see something similar to the screenshot below.

Click the + and select the ‘User mailbox’ option to create the new service account.

Select the ‘New user’ option and complete the form below.  Create a Service Account with a mailbox ZynBit.Service.Account@company.com

Once the form is completed click the ‘Save’ button.

Grant delegated access to the service account for each user

  1. Define your list of users in a .csv file (For Example, Initiallist.csv)
  2. Grant delegated access to users calendar and/or tasks by looping through the user list in Powershell with these commands.
    1. Add-MailboxFolderPermission -identity delegated.user.001:\Calendar -user ZynBit.Service.Account@company.com -accessrights Editor
    2. Add-MailboxFolderPermission -identity delegated.user.001:\Tasks -user ZynBit.Service.Account@company.com -accessrights Editor

 

Ongoing Use

  1.  For users who will need access to ZynBit, be sure to add the Powershell Command to IT Onboarding Checklist
  2. If your IT Staff wants to automate the powershell commands for on-boarding new users, they can develop a scheduled task to automate group/permission management.  Use the same “add” commands as above.  Additional commands to remove users are provided below.
    1. Remove-MailboxFolderPermission -identity delegated.user.001:\Calendar -user ZynBit.Service.Account@company.com
    2. Remove-MailboxFolderPermission -identity delegated.user.001:\Tasks -user ZynBit.Service.Account@company.com