Recently I experienced an issue where when updating my Exchange 2010 RBAC (Role Based Access Control) policies there was an issue with the anticipated outcome of running the following command:

Set-RoleAssignmentPolicy “Default Role Assignment Policy” –IsDefault


After running the above command all Active Directory objects should be running the Default Role Assignment Policy, but in my case they were not.  The following article is one that I wrote that discusses how to validate that all of your users are running the desired Role Assignment policy.

Good luck and enjoy!