How to Create Admin Delegation in Zimbra OSE

In this article, I will show you how to create another admin in Zimbra OSE with restricted access. New admins will have features to create, delete, modify accounts, distribution lists, and aliases.

1. Create a user from Zimbra Admin or via CLI that will be admin. Or you can change the existing user become an admin

2. Create a script
vi /srv/delegate-admin.sh
Please fill with the following line

#!/bin/bash

# $1 for account
# $2 for domain
# run script ./delegate-admin.sh newadmin@imanudin.net imanudin.net

zmprov ma $1 zimbraIsDelegatedAdminAccount TRUE zimbraAdminConsoleUIComponents accountListView zimbraAdminConsoleUIComponents downloadsView zimbraAdminConsoleUIComponents DLListView zimbraAdminConsoleUIComponents aliasListView zimbraAdminConsoleUIComponents resourceListView

zmprov grr global usr $1 adminLoginCalendarResourceAs
zmprov grr global usr $1 domainAdminZimletRights
zmprov grr domain $2 usr $1 domainAdminRights
zmprov grr domain $2 usr $1 domainAdminConsoleRights
zmprov grr domain $2 usr $1 adminConsoleAliasRights
zmprov grr domain $2 usr $1 modifyAccount
zmprov grr domain $2 usr $1 countAlias
zmprov grr domain $2 usr $1 -configureAdminUI
zmprov grr domain $2 usr $1 -get.account.zimbraAdminConsoleUIComponents
zmprov grr domain $2 usr $1 -get.dl.zimbraAdminConsoleUIComponents
zmprov grr domain $2 usr $1 -set.account.zimbraIsDelegatedAdminAccount
zmprov grr domain $2 usr $1 -set.dl.zimbraIsAdminGroup

Give execution access
chmod +x /srv/delegate-admin.sh
3. Change normal user to admin
su - zimbra /srv/delegate-admin.sh newadmin@imanudin.net imanudin.net
Now you can login to Zimbra Admin with a new admin account. Below is a screenshot when login with a new admin

Good luck 🙂

Source: Zimbra Wiki

11 comments

Pingback: Tips Membuat Account Admin Read Only pada Zimbra - Ahmad Imanudin
Pingback: Tips Zimbra : Membuat Account Admin Khusus Manage Distribution List - Ahmad Imanudin
Balaji Vadivel says:

May 29, 2021 at 8:13 am

Hi,

Is it possible to provide set quota limits in this same panel?

Regards,
Balaji

1. iman says:
  
  June 1, 2021 at 2:14 am
  
  Hi Balaji,
  Yes you can. You can configure quota limit for regular user
  
Chesare says:

August 11, 2021 at 6:40 pm

When trying to create an account, the following error occurs: “Message: permission denied: need right: assignCos for cos bla bla bla”
OBs: zimbra 8.8.15 FOSS

To avoid this error, the delegated user must be able to assign the COS
then the following must be executed manually or tune in the script:
$ zmprov grr cos [COS name] usr [delegated-user@domain] +assignCos

1. iman says:
  
  August 13, 2021 at 2:47 pm
  
  Hi,
  Thank you for your workaround
  
Albert says:

March 16, 2022 at 3:35 am

hi there is it possible to create an admin account but that account cannot create emails or delete them?

Thank you

1. iman says:
  
  April 15, 2022 at 11:55 pm
  
  Hi Albert,
  I have not try it. Please share with me if you already found the solution
  
Khalifa says:

January 6, 2023 at 8:15 pm

How do I create a zimbra admin all by myself from the beginning

Fahad says:

August 16, 2023 at 7:29 am

hy imandin.
How to remove “delete account” option from Delegate admin access. admin only change password fromweb console zimbra

1. Imanudin Ahmad says:
  
  August 18, 2023 at 2:33 am
  
  Hi Fahad,
  You can use this one: https://imanudin.net/2019/04/30/zimbra-tips-delegated-admin-can-only-change-passwords/

Share this:

Leave a Reply Cancel reply