Which command should you run?

You have a Microsoft Exchange Server 2019 organization.

You have a user named User1. Multiple users have full access to the mailbox of User1.

Some email messages appear to have been read and deleted before User1 viewed them.

You need to track the identity of any user who deletes the email messages of User1 in the future.

Which command should you run?
A . Set-Mailbox -Identity "User1" -AuditEnabled $true
B . Set-MailboxFolderPermission -Identity "User1"-User [email protected] -AccessRights Owner
C . Set-AdminAuditLogConfig -AdminAuditLogEnabled $true-AdminAuditLogCmdlets "Mailbox"
D . Set-Mailbox "User1" -AuditEnabled $true -AuditOwner MailboxLogin

View Answer

Answer: A

Explanation:

Reference:

https://docs.microsoft.com/en-us/microsoft-365/compliance/enable-mailbox-auditing?view=o365-worldwide