There has recently been some changes in store permissions which could cause BES or GoodLink Server to stop functioning properly. Microsoft has prepared an article outlining the fix.
http://support.microsoft.com/kb/912918
- Joel
The biggest changes here is that the mailboxes no longer inherit the Send As permission from the Full Mailbox access nor do they inherit this from the Database or Server the mailbox is located in.
Previously you could assign an account to have Send As/Receive As for the Exchange Org and it would flow down to the mailbox. That no longer works and the rights have to be set on the mailbox directly (ie the user account). Also Domain Admins, Schema Admins, and Enterprise admin accounts cannot have this permission assigned to their mailbox because of the AdminSDHolder constraint. This means that Blackberry users should not be in these groups (there is a work around in the link above but it requires some work)
The link the previous post has this method of assigning access to the multiple accounts.
You can also grant the Send As permission by inheritance on every user object in an Active Directory domain or in a container. If you grant the Send As permission by this method, you may grant permission for objects that you did not intend. Additionally, you may lose permission for objects that are moved from the container. Therefore, this method is not preferred and may have security implications which should be carefully considered before you implement it. To grant Send As for a single account on all user accounts in an Active Directory domain or container, follow these steps:
Note You may have to wait up to 15 minutes before the Exchange permission cache updates and the changes take effect.