Problem
What are the steps to create a delegated admin who can view account list only (Read-Only admin).
Solution
- Create delegated admin account with the given required AdminConsole UI component :
zmprov ca [email protected] <PASSWORD> zimbraIsDelegatedAdminAccount TRUE zimbraAdminConsoleUIComponents accountListView
- Now assign following grants :
zmprov grr domain DOMAIN.COM usr [email protected] -deleteAccount zmprov grr domain DOMAIN.COM usr [email protected] -changeAccountPassword zmprov grr domain DOMAIN.COM usr [email protected] adminConsoleAccountRights zmprov grr domain DOMAIN.COM usr [email protected] -getAccountMembership zmprov grr domain DOMAIN.COM usr [email protected] -addAccountAlias zmprov grr domain DOMAIN.COM usr [email protected] countAccount zmprov grr domain DOMAIN.COM usr [email protected] -modifyAccount zmprov grr domain DOMAIN.COM usr [email protected] -createAccount zmprov grr domain DOMAIN.COM usr [email protected] -renameAccount zmprov grr domain DOMAIN.COM usr [email protected] -setAccountPassword zmprov grr domain DOMAIN.COM usr [email protected] -removeAccountAlias
Note: Replace ListAccount-ADMIN and DOMAIN.COM with the actual Admin user and DOMAIN name.
|
Submitted by: Heera Singh Koranga |
https://wiki.zimbra.com/wiki/Create_a_delegated_admin_to_see_account_list_only_(Read-Only_Admin)
