question

AngelicaMercado-2207 avatar image
0 Votes"
AngelicaMercado-2207 asked ZhengqiLou-MSFT commented

Can users still access their email on thier own device even if I remove the license and convert their inbox into a sharedbox?

We recently removed a license, and changed a password for a person who left our company. After the license was removed we had the mailbox set to forward messages to the person's manager. It was brought to our attention that he was still able to send/receive emails on his phone. We then converted him into a shared mailbox, which I know doesn't need a license, and deleted the person completely. Did him having the email on his phone somehow allow him to still use it even after all of that? We are just wondering what is going on a why, to prevent this in the future.

office-outlook-itprooffice-exchange-online-itproazure-ad-licensing
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @AngelicaMercado-2207 ,

Looks like your issue is more related to Exchange. Please kindly understand that the Outlook tag here we mainly focus on general issues about Outlook desktop client and know little about Exchange. In order to better solve your problem, we will add "office-exchange-online-itpro" tag.

Thanks for your understanding and hope your question will be resolved soon.

1 Vote 1 ·
AndyDavid avatar image
1 Vote"
AndyDavid answered

Converting a shared mailbox in Exchange Online also disables the account. That should be done first. then remove the license.
Also, enable CAE in Azure:
https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-continuous-access-evaluation

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ZhengqiLou-MSFT avatar image
0 Votes"
ZhengqiLou-MSFT answered ZhengqiLou-MSFT commented

Hi @AngelicaMercado-2207 ,

No, after deleting this user, he will not be able to login with this account.

Actually if you are not going to use the information stored on this user account like mails or events etc. You could directly delete him. The licenses will be reserved automatically.
Even if you want to do that, you could select the options below:
123659-image.png
Best regards,
Lou


If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


image.png (27.3 KiB)
· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @AngelicaMercado-2207 ,

Do the suggestions above help? If the issue has been resolved, please click “Accept as answer” to mark the helpful reply as an answer, this will make answer searching in the forum easier and be beneficial to other community members as well.

If you are still stuck in this issue, please feel free to post your questions.

Regards,
Lou


If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

0 Votes 0 ·

Hit there thank you for following up. For this user we had changed his password, and removed the license from his account. It was after that, that we were alerted that he could still send/receive emails on his phone, where he had the email set up. So we deleted his account, the process above is where we converted his mailbox and turned it into a shared mailbox as well as deleting him in the process. Then I reset the multifactor so we could change that as well. I guess what we're trying to find out is why is it that even after the license is removed, and changed his password why was he able to still use it on his phone? If we have reset the password, removed the license he shouldn't be able to do those things even from his device.

0 Votes 0 ·
AndyDavid avatar image AndyDavid AngelicaMercado-2207 ·

Could be some caching. Thats why I highly recommend enabling CAE as I linked above:

https://docs.microsoft.com/en-us/azure/active-directory/conditional-access/concept-continuous-access-evaluation

1 Vote 1 ·
Show more comments