Using Permissions to Limit Access to Address Lists
All users can access all address lists by default. However, if you want to deny users access to particular address lists, for example, if you want to use department-specific address lists that are only available to members of those departments, configure permissions on individual address lists:
1. Click Start, point to Programs, point to Microsoft Exchange, and then click System Manager.
2. Expand the Recipients object, and then double-click All Address Lists.
3. Right-click the address list for which you want to set permissions, and then click Properties.
4. Click the Security tab, and then click to clear the Allow inheritable permissions from parent to propagate to this object check box.
NOTE: Address list permissions are inherited by default.
5. Click Copy to copy the current permissions from the parent object.
Do not click Remove. If you do so, system permissions may be affected.
6. To grant a recipient access to the address list, click Add, click either a recipient or group in the Select Users, Computers or Groups list, and then click to select the Allow check box next to Read permissions.
7. To deny a recipient access to the address list, click a recipient in the Select Users, Computers or Groups list, and then click to clear the Allow check box next to Read permissions.
8. Click OK.
NOTE: Always exercise caution when you use the explicit Deny permissions, particularly with groups. Deny permissions override Allow permissions, which can cause unexpected issues when you view the Address Book.