While moving some mailboxes I got the following error :
Active Directory operation failed on servername.domainname.local. This error is not retriable. Additional information: Insufficient access rights to perform the operation. Active directory response: 00002098: SecErr: DSID-03150BB9, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0 The user has insufficient access rights. Exchange Management Shell command attempted: ‘domainname.local/Users/User Name’ | New-MoveRequest -TargetDatabase ‘User Mailbox Database’
I found out the error was because inheritable permissions was not turned on for this specific user. (In this case this user was a member of the domain admin usergroup). This is how you can fix this problem :
Open dsa.msc (make sure advanced features has been enabled). Open the specific user and go to properties and select security
Go to advanced and enable “Include inheritable permissions..”
In my case I was enable to move this specific mailbox.
