Microsoft KB Archive/251736
Article ID: 251736
Article Last Modified on 2/27/2007
- Microsoft Exchange 2000 Server Standard Edition
This article was previously published under Q251736
Public folders that are created in the public folder root do not inherit anonymous Access Control Entries (ACEs). The root folder in the public information store, "All Public Folders," has a discretionary Access Control List (ACL) that permits or denies certain types of access to an anonymous logon. These ACEs are marked as CONTAINER_INHERIT_ACE and OBJECT_INHERIT_ACE, which means that they should propagate the security settings to subfolders.
This behavior is by design.
When top-level folders are created, they do not inherit the anonymous logon ACL. Rights are explicitly denied to anonymous users on folders that are located directly under the IPM subtree or the EForm registry key.
Keywords: kbbug kbnofix KB251736