After its initial introduction in Exchange 2010, RBAC was quickly tagged as being overly complex, perhaps because RBAC had to be managed through EMS. In fact, RBAC is more powerful and easier to use than messing around with ACLs on objects, but it is difficult for a component to lose a reputation after it’s been acquired. Exchange 2013 doesn’t use the RBAC phrase. Instead, EAC contains a Permissions section, which is a much better and more user-friendly term. The section is broken down into admin roles, user roles, and Outlook Web App policies. You see the first two in this chapter. Admin roles refer to the management role groups discussed so far, whereas user roles refer to the role assignment policies that govern what users ...