You need to determine whether someone other than the ma…

An Organization uses Exchange Online. You enable mailbox audit logging for all mailboxes.
User1 reports that her mailbox has been accessed by someone else.
You need to determine whether someone other than the mailbox owner has accessed the mailbox.
What should you do? have been accessed by someone other than the person who owns the mailbox. over the past two weeks. The mailboxes listed in the search results have been enabled for mailbox audit logging. search results in the details pane. mailbox audit log that’s stored as an email message in a hidden folder in the mailbox being audited. Entries from this log are displayed as search results and include a list of mailboxes accessed by a non-owner, who accessed the mailbox and when, the actions performed by the non-owner, and whether the action was successful.

An Organization uses Exchange Online. You enable mailbox audit logging for all mailboxes.
User1 reports that her mailbox has been accessed by someone else.
You need to determine whether someone other than the mailbox owner has accessed the mailbox.
What should you do? have been accessed by someone other than the person who owns the mailbox. over the past two weeks. The mailboxes listed in the search results have been enabled for mailbox audit logging. search results in the details pane. mailbox audit log that’s stored as an email message in a hidden folder in the mailbox being audited. Entries from this log are displayed as search results and include a list of mailboxes accessed by a non-owner, who accessed the mailbox and when, the actions performed by the non-owner, and whether the action was successful.

A.
Run the following Windows PowerShell command: Search-MailboxAuditLog-Identity User1-LogonTypes
Admin, Delegate, External-ShowDetails

B.
In the Exchange Admin Center, navigate to the In-place eDiscovery & Hold section of the Protection page.
Run a non-owner mailbox access report.

C.
In the Exchange Admin Center, navigate to the In-place eDiscovery & Hold section of the Compliance
Management page. Run a non-owner mailbox access report.

D.
Run the following Windows PowerShell command: New-AdminAuditLogSearch-Identity User1-LogonTypes
Admin, Delegate, External-ShowDetails

Explanation:

The Non-Owner Mailbox Access Report in the Exchange Administration Center (EAC) lists the mailboxes that
Run a non-owner mailbox access report
In the EAC, navigate to Compliance Management > Auditing.
Click Run a non-owner mailbox access report.
By default, Microsoft Exchange runs the report for non-owner access to any mailboxes in the organization
To view non-owner access for a specific mailbox, select the mailbox from the list of mailboxes. View the
Note: When a mailbox is accessed by anon-owner, Microsoft Exchange logs information about this action in a

References: https://technet.microsoft.com/en-us/library/jj150575(v=exchg.150).aspx



Leave a Reply 0

Your email address will not be published. Required fields are marked *