Two types of administrators can be created:
Global Administrator
Delegated Administrators
Global administrators are the primary administrators for the Zimbra Collaboration Server and manage, monitor, and maintain the health of the Zimbra email system. The global administrator can create other delegated administrator accounts and delegated administrator group distribution lists. The global administrator grants rights to access various administration tasks and resources to each delegated administrator account or administrator group.
A delegated administrator role can be as simple as managing a distribution list or resetting forgotten passwords for one or more users, or a more expansive role such as a domain administrator that manages one or more domains.
The two major administrator roles are outlined below.
The global administration tasks are performed either from the administration console or using the Zimbra command-line interface tools.
Major responsibilities of global administrators include configuring the following:
Global settings that define the default global values for servers, accounts, COS, and domains
Classes of Service (COS) that set the default attributes and features for user's mail accounts
Domains settings, GAL settings, and authentication settings
Server services, MTA, IMAP, and POP
User accounts, aliases, and distribution lists, assigning either a COS to an account or configuring individual account's features and preferences
Backup schedules so that in the event of a system failure, Zimbra mail servers can be restored
General maintenance and monitoring of the email system
In addition, the global administrator can download and run the Migration Wizard to import email accounts to the Zimbra server.
The global administrator can delegate a user as a domain administrator and assign a specific COS to a domain.
One of the preconfigured delegated administrator roles is domain administrator group admin distribution list. For all the rights associated with the domain administrator role, an administrator account is assigned to the zimbradomainadmins group. Domain administrator can create accounts only for their domain and all tasks are performed from the administration console.
The global administrator configures the domain and assigns a COS to that domain. Accounts the domain administrator creates are automatically assigned the domain COS.
The zimbradomainadmins group DL has been granted the rights that let the domain administrators manage the following tasks on their domain:
Provision new accounts, but they do not assign features or attributes. The domain COS is configured with the features and attributes for accounts
Edit account information
Change passwords
Change the status of an account
Create, delete, and move aliases
Create, modify, and delete distribution lists
Assign other users as administrators
Download and run the import and migration tools
View mailbox quotas
Set mailbox quotas (optional). The domain administrator can set mailbox quotas if the global administrator enables the domain administrator configuration to modify the account mail quota
-------------------------------------------------------------------------------------------------------
Copyright @ 2005-2017 Synacor, Inc. All rights reserved. "Zimbra" is a registered trademark of Synacor, Inc.