HOW TO: Selectively Permit Access to Internet Messages by Modifying Recipient Policies in Exchange 2000

In a single Exchange 2000 organization, you can permit some users to access Internet e-mail messages and restrict other users from accessing Internet e-mail messages. The procedure to do so differs between Microsoft Exchange Server 5.5 and Exchange 2000.

Selectively Permit Access to Internet Messages

To restrict users from receiving Internet e-mail messages in Exchange 2000, create two Simple Mail Transfer Protocol (SMTP) addresses, for example, someone@example.com and someone@example.local. After you do so, use Exchange 2000 recipient policies to assign the example.local address to all users and the example.com address to only the users who are permitted to receive Internet messages. When you use this configuration, all users can receive internal e-mail messages, but only specific users can receive Internet e-mail messages because the example.local address is not a valid Internet e-mail address.

Modify Recipient Policies

1. Click Start, click Programs, click Exchange, and then click System Manager.
2. Expand Recipients, expand Recipient Policies, right-click the policy that you want to modify, and then click Properties.
3. Click the E-Mail Addresses tab.
4. Click New, click the address type that you want to use, and then click OK.
5. In the Address box, type the appropriate information for the address type that you selected, and then click OK.
6. On the E-Mail Addresses tab, click to select the check box next to the e-mail address that you added.
7. If the e-mail address that you added is the same type of address as an existing e-mail address and you want the new address to be the primary address, click the new address, and then click Set as Primary.
   
   NOTE: The primary address is the address that appears in the From box when a mailbox-enabled user sends a message.
8. Click OK.
9. If you are prompted to update all of the corresponding recipient e-mail addresses to match the changes that you made, click Yes to apply the changes you made to the recipient policy to the recipients that are associated with the policy.
   
   If you set the new e-mail address as the primary address, the other e-mail addresses of that type automatically become secondary addresses.

For additional information about how to configure security for incoming Internet Message Access Protocol (IMAP4) connections to your Exchange 2000 computers so that the users can authenticate and receive potentially sensitive material without the risk of either the user name, the password, or the message content being intercepted, click the article number below to view the article in the Microsoft Knowledge Base: