FREE: NetWrix Non-owner Mailbox Access Reporter Freeware

NetWrix Non-owner Mailbox Access Reporter for Exchange is a simple auditing tool that detects and reports on who accessed which mailbox, when and what was done and who attempted to gain access on other user’s mailboxes.

Author
Recent Posts

Guest Author

If you want to write a guest post on 4sysops contact us.

Latest posts by Guest Author (see all)

FREE: File Permissions Check – Compare folder and file permissions - Fri, Feb 20 2015
FREE: ABC-Deploy – Software deployment and inventory - Wed, Apr 16 2014
FREE: AD Permissions Reporter – View Active Directory permissions - Fri, Feb 7 2014

Submitted by Vadim Balandin

Auditing and reporting of non-owner mailbox access is possible with native auditing of Microsoft Exchange Server but often appears to be a time-consuming manual process. The difficulties are caused by a substantial amount of low-level information and noise contained in event logs.

NetWrix Non-owner Mailbox Access Reporter is a simple tool specially designed for Microsoft Exchange Server. It automatically audits users as well as administrators who gained access to mailboxes not belonging to them. The product features an automatic daily report delivery that ensures that the authorized persons are able to analyze all accesses made by any user during any time period. The reports contain detailed information on access to particular e-mail folders and specific files (messages, calendars) within the mailbox.

The table below shows a sample report. It contains a description of a User_01 daily activity in a human-readable and easy to understand format. One can see the User_01 performed several actions in all@wks166.local mailbox including opening folders, messages and creating a message draft.

Who Accessed	When Accessed	Mailbox	Server	Access Type	Details
User_01	6/26/2012 3:44:04 PM	all@wks166.local	exch07-wks166	Folder opened	Folder / was opened.
6/26/2012 3:44:04 PM	all@wks166.local	exch07-wks166	Folder opened	Folder /Inbox was opened.
6/26/2012 3:44:04 PM	all@wks166.local	exch07-wks166	Message opened	The message located in /Inbox with the subject sdf was opened.
6/26/2012 3:44:18 PM	all@wks166.local	exch07-wks166	Folder opened	Folder /Drafts was opened.
6/26/2012 3:44:18 PM	all@wks166.local	exch07-wks166	Message created and saved	A message was created in /Drafts with the subject a.

In order to satisfy historical reporting and compliance needs the Exchange auditing tool provides system administrators with a long-term storage opportunity of up to seven years and beyond.

Key features include:

Facilitates the auditing of non-owner mailbox access
Improves Exchange security
Minimizes the risks associated with sensitive information stored in corporate mailboxes
Helps sustain compliance