Even though users access their own mailboxes with their own credentials , ITEX is creating events in event viewer with the category "Non-owner mailbox access". The following error message is noticed in the ADManager.log:
01/05 12:24:59:506 | 664 | error getting user by SID Domain quest.test.com The specified domain either does not exist or could not be contacted.[EIP: 0x0269AD49,0x0269A6D4][EIP: 0x0268407E,0x0268431D] 0x8007054B
01/05 12:24:59:506 | 664 | Search string: msExchMailboxGuid=\F9\E3\98\B2\ECoMF\BB\A8\ED\EEkn\B8\29
The problem is related to the fact that the domain name cannot be resolved by ITEX and therefore mailbox names cannot be mapped to SIDs of the events initiators, which violates the non-owner access detection subsystem .
ITEX is trying to contact domain by its FQDN, but fails. For more technical information regarding the cause of this issue, refer to the Microsoft KB article in the 'Additional Information' section.
To work around this problem, you will need to edit ITEX configuration file in the \Program Files\Quest Software\InTrust Plug-In for Exchange\Storage (ITEXConfig.xml).
Find line <attribute name="CurrentDomain" type="0" value=""/>
and change it to <attribute name="CurrentDomain" type="8" value="Domain Name"/>
Substitute 'Domain Name' with the fully qualified name of the domain (not of the Exchange server).