Current backup vendors (symantec, netapp, veeam) require unscoped "Organisational Management " permissions to allow exchange backups to occur because Backup Vendors products do not understand RBAC. This is due to the fact that "organisational management" is the only RBAC role that has explicit permissions on exchange objects in the configuraiton container right down to DAG, Database and Server objects. Create Explict ...more »
Currently only modify write scope is supported. Adding possibility for change read scope limit from Orgaization-wide to OU would be very useful.