Monday, February 20, 2023

Access Shared Mailbox Only via Outlook

 

Intro:

I have a client who changes employees every year and they need to access a single mailbox and not their own. For example they have, "legal@xyz.com" and need 3 people send/receive as that email address and not their own. To do this we'll use what's known as a "shared mailbox".

We need to add users first then add the shared mailbox. I guess you could do it the other way around but without a user how would you access the shared mailbox?

*I'm doing this as a Microsoft Partner so some of the steps may need to be skipped or omitted if you don't have a Partner account.

Process to Add Users:

Login to https://admin.microsoft.com/ or https://admin.microsoft.com/Adminportal/Home#/tenants (double check the tenant you're about to modify).

Select the tenant you wish to modify

Show All --> Users --> Active Users

Add a user --> Name, email address, select license (get from supplier), Roles = user, fill out profile info --> Finish Adding



Process to Add a Shared Mailbox:


Login to (https://admin.exchange.microsoft.com/) or (https://partner.microsoft.com/en-us/dashboard/home). If logging in as a Partner go to Customers --> Select customer --> Select Exchange under Administer Services. You should be taken to (https://admin.exchange.microsoft.com/) and your tenant should be stated near the top left with two opposing arrows to the right of the customer name.

Recipients --> Mailboxes

The user you create previously should be listed here.

Add a shared mailbox

Enter display name, email address, leave alias blank --> Create

Add users to this mailbox --> Add members --> Select members you want to have view/send/receive access --> Save.

Add delegate permissions? Yes.
(To double check this --> Click on shared mailbox in question and on the flyout click, Delegation. "Send as" and "Read and manage (Full Access)" need to contain the user you want to have sending/receiving mail as this mailbox.) You will receive errors if this delegation is not selected.

You'll see, "It might take up to 60 minutes for the change to be effective in Outlook and OWA." or some other time frame. So far I've seen 5 minutes on a Saturday night and 60 minutes on Sunday. Who knows.

Refresh the "Manage Mailboxes" page.

You should see the new shared mailbox.

Currently shared mailboxes that do not have an license attached to it such as Exchange Online Plan 2 are limited to 50gb. See here: https://learn.microsoft.com/en-us/microsoft-365/admin/email/about-shared-mailboxes?view=o365-worldwide

As for the space, here's some context. It took me since the beginning of Gmail in 2004 until today, 2023, to use approximately 14gb of space consisting of emails only. There's the occasional photo or two but mostly text based emails. I use every day for a variety of things. 50gb is plenty for a small business that mainly does text based emails.



Access Only This Shared Mailbox via Outlook:

In this instance this is only an Exchange Online plan with email only. There is no Microsoft 365 (formerly O365) account with Word, Excel, Outlook, etc baked into the license.

Launch Outlook on the PC. If you blew out the profiles it'll ask you for a new profile name. Just name it "default".

Enter the email address for the shared mailbox.

Click "Advanced Options" --> "Let me set up my account manually" --> Connect.

Click on "Microsoft 365". At the time of writing this icon is a red/orange/pink square.

Click "Sign in with another account" in the single sign on box.

Type in the user's actual email --> Next.

Type in the user's password --> Sign in.

Click "Skip for now (14 days until this is required)". This will be replaced with MFA per user. Be sure to set up MFA for your user or have them do it. Use Authy.

Stay signed in to all your apps? Since we only want to sign in to the Office applications and not the entire OS as this Microsoft account, click, "No, sign in to this app only" near the bottom in blue --> OK --> Done.


Exchange Account Settings (verify shared mailbox is at the top of this box) --> Move slider to the right to download all email --> Next --> Uncheck "Set up Outlook Mobile on my phone, too" --> Done.


The shared mailbox is now the only mailbox signed in and the user can continue on. Make sure to send/receive test email to verify the delegation section set above is working.




My Notes:

Process to clear out old Outlook profiles and start fresh:

Outlook 2021 --> C:\Program Files (x86)\Microsoft Office\root\Office16 --> OLCFG.EXE --> Show Profiles --> Select a profile name --> Remove

Delete anything here if all profiles have been deleted: C:\Users\XXXXXX\AppData\Local\Microsoft\Outlook

Start at (Access Only This Shared Mailbox via Outlook) to add a new mailbox from scratch.



πŸ‘½