Reputation: 13
Access Exchange (2016) audit logs with EWS Managed API
I wrote a tiny EWS API program in C# to check Exchange audit logs. The test is against an Exchange 2016 server.
When I'm trying to check the admin audit logs folder:
Folder myFolder= Folder.Bind(service, WellKnownFolderName.AdminAuditLogs);
I get an "access is denied" error:
Microsoft.Exchange.WebServices.Data.ServiceResponseException: Access is denied. Check credentials and try again.
Since it's a test environment, I've granted the user I'm using all sort of permissions (domain/enterprise admin in the domain, Organization Management, Records management in Exchange, etc.) and apart from the AdminAuditLogs folder it can query everything w/o error. (Eg. a Folder.Bind(service, WellKnownFolderName.Root works OK.)
Basically it's the same problem as 'Andy' had a few years ago (unanswered Q from social.msdn):
Upvotes: 0
Views: 1328
Answers (1)
Reputation: 22032
As far as I know that folder isn't meant to be accessible via a client API like EWS. Eg because of the security implications that somebody else accessing the Mailbox could edit/delete the Log to hide their actions. All access should be done via the Exchange Management Shell cmdlets
Cheers Glen
Upvotes: 0
Related Questions
- Microsoft Graph API : Restrict scope of calendar.readWrite and Audit mailbox access by Application Permission
- Cannot access Exchange Public Folder Calendar with c# ExchangeWebServics
- EWS using OAUth (app only) for multiple tenants throwing Access is denied /401 unauthorised on EmailMessage.Bind()
- How to get OAuth2 access token for EWS managed API in service/daemon application
- EWS Error Accessing Public Folders - Exchange 2010 With Replicated Exchange 2003 Public Folders
- ErrorMissingEmailAddress error when accessing other user's Exchange mailbox by EWS
- Use EWS to access mails stored in Archive folder in Exchange 365