Sorry for posting to an ancient thread but, there may be admins who still want to deny "View Mail" right for an account or domain. Apparently Zextras View Mail can't be disabled but if you deny adminLoginAs per account or per domain using zmprov, admin won't view mail even if the "View Mail" is still available.
To deny adminLoginAs to a domain admin for an account type as zimbra user:
Code:
zmprov grr account dontviewmymail@example.com usr domainadmin@example.com -adminLoginAs
To deny adminLoginAs to a domain admin for entire domian type as zimbra user:
Code:
zmprov grr domain example.com usr domainadmin@example.com -adminLoginAs
To grant the right use + instead of -
Cheers
Bookmarks