Select the product you need help with
- Internet Explorer
- Windows Phone
- More products
Office 365 pre-upgrade administrators can't sign in to the Forefront Online Protection for Exchange (FOPE) Quarantine service to access mail quarantine
Article ID: 2587698 - View products that this article applies to.
Not sure what release of Office 365 you're using? Go to the following Microsoft website:
Am I using Office 365 after the service upgrade?
You're a Microsoft Office 365 pre-upgrade global administrator or Exchange Online administrator in Office 365 pre-upgrade, and you try to access mail quarantine through the Microsoft Forefront Online Protection (FOPE) Quarantine service website. To do this, you use the https://quarantine.messaging.microsoft.com
(https://quarantine.messaging.microsoft.com)URL, or you use the link in the upper-right corner of the FOPE Administration Center. However, you receive an error message that resembles the following:
When you try to add the Office 365 pre-upgrade administrator account as a FOPE user account in the FOPE Administration Center, you receive the following error message:
You do not have permission to access this application.
You receive this error message even though the administrator email address isn't listed in the user list for your domain in the FOPE Administration Center.
The e-mail address already exists.
By default, accounts that are created in Office 365 pre-upgrade and added to the Global Administrators, Organization Management, or View-Only organization management groups are replicated to the FOPE Administration Center as single-sign-on (SSO) accounts instead of as standard FOPE user accounts. This behavior prevents Office 365 pre-upgrade administrator accounts from accessing the FOPE quarantine portal because the user accounts aren't listed under the associated domain in your company. Because they do exist as SSO accounts, they can't be added as standard FOPE user accounts.
To resolve this issue, use a second Office 365 pre-upgrade administrator account to temporarily remove the Office 365 pre-upgrade administrator role from the initial user account in the Office 365 pre-upgrade portal, manually add the user account to the FOPE Administration Center, and then reassign the administrator role to the user account in Office 365 pre-upgrade. To do this, follow these steps:
For more information about how to manage Office 365 pre-upgrade or Live@edu administrator accounts, see the following Microsoft websites:
Office 365 pre-upgrade global administrators can use a standard user account to access email services, including Exchange Online and the FOPE Quarantine service, and a separate global administrator account to perform administrative tasks. The global administrator account doesn't require that an additional license be consumed.
When you use this configuration, you can set the standard user account in the FOPE Administration Center so that the user account can access mail and "spam" quarantine. For more information, see the following Microsoft TechNet topics:
For more information about how to add a user to the FOPE Administration Center, go to the following Microsoft website:
http://technet.microsoft.com/en-us/library/ff715060.aspxFor more information about FOPE policy rule settings, go to the following Microsoft website:
http://technet.microsoft.com/en-us/library/ff714983.aspxFor more information about how to configure spam quarantine, go to the following Microsoft website:
http://technet.microsoft.com/en-us/library/ff715240.aspxFor more information about the FOPE spam quarantine mailbox, go to the following Microsoft website:
http://technet.microsoft.com/en-us/library/how-to-use-the-fope-email-spam-quarantine-mailbox.aspxFor more information about how to log on to the FOPE Quarantine service and personalize settings, go to the following Microsoft website:
Still need help? Go to the Office 365 Community
Article ID: 2587698 - Last Review: February 27, 2013 - Revision: 12.0