What was the bug ID? I'll try to track that down for you...
Here is the link: http://bugzilla.zimbra.com/show_bug.cgi?id=7425
That bug says that when admins are logged into the mail system as themselves they should have normal user rights. This was causing people no end of confusion, because one user would share a calendar with the admin read-only and the admin would be able to modify it from their regular mail client.
You want something completely different. Is there a bug filed for what you want?
My case number is: 00008212 "Is it possible to disable the admin from being able to view the users email?"
Last edited by pfefferc; 02-07-2007 at 12:23 PM.
How would I do that? Or is there away so that when they click view mail, to prompt for the user's password?
I am in the same situation as pfefferc :
I use Zimbra Open Source only for my domain (with a quite limited number of users, about 30).
I would like to delegate the creation of user accounts to one of my colleagues, but I don't want him to be able to view users emails.
Why can the global administrator view users emails anyway ? I don't want to view them !
Having the ability to reset a user's password is enough, IMHO.
For now, I just voted for this bug (quite hard to find, but it's here : http://bugzilla.zimbra.com/show_bug.cgi?id=11374), but I really think this is a power that administrators shouldn't have.
The point is that in Germany (and I guess in other countries as well) this feature will make it impossible to use Zimbra in some companies.
There are laws that prohibit anyone to be able to read the mails of another person without consent or very strict rulings as long as it is not forbidden to use the mailbox for private mails as well (and still even if this is the case).
you are right, the feature has nothing to do with the law. And you are right in saying that an admin can, nearly, do everything he wants.
IT is just making this thing very easy and obvious. And I know that some applications dealing with email make it impossible to do this (except going back to basic OS mechanisms) for a single person to read the mails of others.
Perhaps I am a bit over concious on this point as we had some workshops for customers dealing with these things.