Registrations are now open. Join us today!
There is still a lot of work to do on the wiki yet! More information about editing can be found here.
Already have an account?

Microsoft KB Archive/251736

From BetaArchive Wiki
Knowledge Base

XADM: Folders Created in the Public Folder Root Don't Inherit Anonymous Access Control Entries

Article ID: 251736

Article Last Modified on 2/27/2007


  • Microsoft Exchange 2000 Server Standard Edition

This article was previously published under Q251736


Public folders that are created in the public folder root do not inherit anonymous Access Control Entries (ACEs). The root folder in the public information store, "All Public Folders," has a discretionary Access Control List (ACL) that permits or denies certain types of access to an anonymous logon. These ACEs are marked as CONTAINER_INHERIT_ACE and OBJECT_INHERIT_ACE, which means that they should propagate the security settings to subfolders.


This behavior is by design.


When top-level folders are created, they do not inherit the anonymous logon ACL. Rights are explicitly denied to anonymous users on folders that are located directly under the IPM subtree or the EForm registry key.

Keywords: kbbug kbnofix KB251736