Using the ECP with a Non-Mailbox Enabled Account | Quisitive
Solutions
Integration & Consulting
Help you move, operate, innnovate and thrive within the Microsoft clouds.
Application Development
Data & Analytics
Artificial Intelligence
Business Applications
Security
Digital Workplace
Infrastructure
Product Development
Technology
Explore the full list of technologies that our expert consultants can support.
Azure
Microsoft Teams
Azure Synapse
Microsoft Viva
System Center
Windows
SQL Server
Power Platform
Microsoft Sentinel
Power BI
Azure Virtual Desktop
Power Apps
Microsoft 365
Dynamics 365
Sharepoint
ERP Technologies
Business Needs
Departmental solutions to ensure cloud and technology enablement across every area of your business.
Sales & Marketing
Operations
Human Resources
Payments
Finance & Accounting
Customer Service
Payment Solutions
Use the power of the cloud to bring value back to the archaic payment processing industry.
Payment Products
Processing
Localization Services
Help you translate software so you can capture new business worldwide.
Language Engineering & NLP
Translations & Localization
Licensing
Experts in Microsoft cloud licensing and optimizing costs for your business.
Products
EmPerform
Provide people managers with flexible employee performance management software.
Velocity Insights
Monitor, analyze, and prioritize .NET, JavaScript or Node JS errors – all on one dashboard.
AgeChecker.net
Ensure local and federal compliance with our age verification tool for retail.
PowerGov
Engage citizens with a community development app for city maintenance and management.
PayiQ
Transform everday payment processing data into seamless customer engagement.
AMS
Deliver on your cloud strategy with a team that continuously monitors, improves, and optimizes your Azure environment.
MazikCare
Embrace patient-centered, collaborative care with our suite of real-time health solutions.
Care Path
Care Provider Link
Care Supply
Payer Matrix
Data Fusion
Spyglass
Take a proactive, continuous approach to optimizing your security environment and strategy.
ShopFloor
Empower production managers with cutting-edge manufacturing process management.
Managed Services
Azure Management Services
Deliver on your cloud strategy with a team that continuously monitors, improves, and optimizes your Azure environment.
App Dev Program
Ongoing enhancements, app security, DevOps and reporting for apps running in Azure.
Data Program
Operational support for running, monitoring and managing services within the Azure Data Platform.
Dynamics Program
Ensure the health of your Dynamics environments, optimize usage and encourage user adoption.
Digital Workplace Program
Optimize Microsoft 365 security, usage and user adoption with our digital workplace experts.
Security Program
Take a proactive, continuous approach to optimizing your security environment and strategy.
Power Platform Program
Get an extension of your team that ensures the health of your Power Platform.
Industries
Manufacturing
Education
Public Sector
Financial Services
Healthcare
Energy
Retail
Software
Resources
Blogs
Case Studies
Library
Newsletters
Events
News
Learning Channels
About
Investors
Leadership
Microsoft
Our Approach
Our Partners
Our Story
Awards & Recognition
Careers
Support
Contact us
Solutions
Back
Solutions
Integration & Consulting
Application Development
Data & Analytics
Artificial Intelligence
Business Applications
Security
Digital Workplace
Infrastructure
Product Development
Technology
Azure
Azure Synapse
Azure Virtual Desktop
System Center
SQL Server
Microsoft Sentinel
Microsoft 365
Sharepoint
Microsoft Teams
Microsoft Viva
Windows
Power Platform
Power BI
Power Apps
Dynamics 365
ERP Technologies
Business Needs
Sales & Marketing
Operations
Human Resources
Payments
Finance & Accounting
Customer Service
Payment Solutions
Payment Products
Processing
Localization Services
Language Engineering & NLP
Translations & Localization
Licensing
Products
Back
Products
EmPerform
AgeChecker.net
PayiQ
MazikCare
Care Path
Care Provider Link
Care Supply
Payer Matrix
Data Fusion
ShopFloor
Velocity Insights
PowerGov
AMS
Spyglass
Managed Services
Back
Managed Services
Azure Management Services
Data Program
Digital Workplace Program
Power Platform Program
App Dev Program
Dynamics Program
Security Program
Industries
Back
Industries
Manufacturing
Healthcare
Education
Energy
Public Sector
Retail
Financial Services
Software
Resources
Back
Resources
Blogs
Events
Case Studies
News
Library
Learning Channels
Newsletters
Investors
Back
Investors
Financial Reports & Results
Investor News
Earning calls
Contact
Contact us
About
Back
About
Our Story
Investors
Microsoft
Leadership
Our Partners
Awards & Recognition
Our Approach
Careers
Support
Search
Back
Terms of use
Privacy policy

The Exchange Control Panel (ECP) was designed to allow administrators and users the ability to perform common management tasks within Exchange 2010 without installing any Management Tools.  This is a great option that the Exchange team included with Exchange 2010.

With Exchange 2010 RTM, it was not possible to log into the ECP unless the user logging in had a mailbox.  This is ok for most users since one of the design goals of ECP was to provide a way for users to “self-service” their account.  Users can get to the ECP by selecting Options –> See All Options…within OWA.

ECP-NoMail-OWAoptions
ECP-NoMail-OWAoptions-click

Where this breaks down is that best practices state that users which require administrative rights should split accounts so that the user has an everyday account (that is mail enabled) and a privileged account (that is not mail enabled).  With Exchange 2010 RTM, this pushed administrators to enable their administrator accounts for email or just use their everyday account to administer Exchange.

Starting with Exchange 2010 SP1, non-mail enabled accounts can now log into the ECP.  As an example, the following user ExchangeAdmin is a member of Organization Management and does not have an email account.

ECP-NoMail-memberof

Most users access the ECP from the Options menu in OWA.  If ExchangeAdmin tries to log into OWA, they will get the following error:

ECP-NoMail-owaerror

In order for the ExchangeAdmin to be able to log into ECP, they will need to use the URL that takes them directly to the ECP to log in.  In my example, this is https://mail.lab.com/ecp.  The non-mail enabled account can now log in and access the ECP:

ECP-NoMail-ecplogin

Now with Exchange 2010 SP1, non-mailbox enabled accounts can log in to the ECP.

Exchange 2010 introduces the concept of Move Requests instead of the traditional Mailbox Moves found in earlier versions of Exchange. 

This is a complete redesign for how mailbox moves are managed. 

So why the change?

  1. Mailbox moves are now asynchronous and are carried out by the Exchange Mailbox Replication Service located on each CAS server (instead of being carried out by the actual cmdlet or console)
  2. Mailboxes are kept online during the asynchronous moves (users do not lose their connection to their mailbox during the move and can continue to send and receive email)
  3. Items in a mailbox’s Recoverable Items folder are moved with the mailbox
  4. Content indexing starts to scan the mailbox as soon as the mailbox begins to move
  5. Throttling can be configured for each mailbox replication service, database or server
  6. Moves can be managed from any Exchange 2010 server
  7. Mailbox content doesn’t move through the server creating the request, this allows shut down of the console during the mailbox move

There are two types of Move Requests: Local and Remote.  Local is used for any mailbox moves within the same Exchange Organization.  Remote is used for any cross-forest migrations.  A Move Request can be initiated two different ways: from EMC and EMS.

From EMC, navigate to the Recipient Configuration –> Mailbox node.  Right-click on a mailbox and select New Local Move Request.  After the wizard is complete, a new Move Request will be created and the mailbox will be moved.

moveRequest-EMCSelect-markup

The same function can be performed in the EMS by running the following command:

New-MoveRequest –Identity Alias –TargetDatabase “DatabaseName”

Note that if a database name is not specified, a random database is selected.

Status of the Move Request can be viewed by navigating to the Recipient Configuration –> Move Request node and selecting the properties of the Move Request.

MoveRequest-status

Also a complete report can be generated from the EMS by running the following command:

Per Mailbox:  Get-MailboxStatistics –Identity Alias –IncludeMoveReport | fl

For a complete report for all moves including specific fields and outputting to a text file:

Get-MoveRequest | Get-MoveRequestStatistics | Select DisplayName, Status, TotalItemSize, TotalMailboxItemCount, PercentComplete, BytesTransferred, ItemsTransferred | Out-File –FilePath “C:\temp\FullMoveUserLog.txt”

One thing that is different is that the Administrator will have to clear out any Move Requests if a mailbox needs to be moved again or a database deleted.  Through the EMC, if a Move Request still exist, the administrator will not even have the option to create a New Local Move Request.  From the EMS, the error that an administrator will see if the Move Request is not cleared out is shown below.

Move Request can be cleared either from the EMC or EMS.  From the EMC, simply right-click on the Move Request within the Recipient Configuration –> Move Request node and select Clear Move Request.  From the EMC, the following command can be executed to clear any Move Request.

Get-MoveRequest | Remove-MoveRequest –Confirm:$false

The complete Move Request workflow is shown in the following diagram (courtesy of Microsoft):

MoveRequest-Process