If your end users are using Exchange Server 2010 OWA, one of the things they can now do is track their messages from the Exchange Control Panel and see largely the same data an administrator sees. What isn’t enabled by default is the ability to delegate this on an organization wide basis via the Exchange Control Panel. There is a duplicate of this interface which lets a user search the entire organization’s message tracking logs. In order to access this, you need to do a couple of things:
- Create an Active Directory security group to delegate the rights to in RBAC
- Create a new Management Role Assignment for the Message Tracking role
- Create a new Management Role Assignment for the View-Only Recipients role
I went ahead and created a group called “Exchange Message Tracking Access” and added my account to it. Next, I ran the following PowerShell command:
New-ManagementRoleAssignment -Role "Message Tracking" -SecurityGroup "Exchange Message Tracking Access" New-ManagementRoleAssignment -Role "View-Only Recipients" -SecurityGroup "Exchange Message Tracking Access"
Once you login to Outlook Web App with a user who is in the Exchange Message Tracking Access group and go to the Options (Exchange Control Panel [ECP]) section, you’ll see the option of managing “My Organization” in the upper left hand corner:
If you select “My Organization”, you’ll get a UI like this:
The key thing to nice here is the user friendly UI with the help bubbles. You can delegate this to service desk or other front line support personnel so they can handle end user questions as to the delivery status of their message. Each result provides a details view which shows most of the information available to administrators using Message Tracking cmdlets except in a friendly and understandable interface.