This week I’m working on an Exchange 2007 deployment with approx. 1000 mailboxes. The customer wants to provide everyone with access to OWA, but only allow access to OutlookAnywhere for a small number of users.
Turns out this is possible using the Exchange management shell.
Set-CASMailbox -MAPIBlockOutlookRpcHttp:&true
(After pressing enter you’ll be prompted for the user identity. )
This approach works for disabling access for a specific mailbox. Since I’m dealing with over 1000 mailboxes, a better approach would be to disable OutlookAnywhere for all users, then re-enable the service for specific users.
Get-mailbox | Set-CASMailbox -MAPIBlockOutlookRpcHttp:$True
Get-mailbox “identity” | Set-CASMailbox -MAPIBlockOutlookRpcHttp:$False
Specify the mailbox ID in quotes. This can be the alias, smtp address, domain\user, etc.
You can verify the change with the following:
Get-CASMailbox “identity” |format-list MAPIBlockOutlookRpcHttp
