I have an service mailbox created in entra id and i use it for sending customer notification only, can i block the user acount from loggin in without disabling it?

AzureGladiator 0 Reputation points
2025-01-08T22:14:19.63+00:00

I have an service mailbox created in entra id and i use it for sending customer notification only, can i block the user acount from loggin in without disabling it?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
22,863 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Andy David - MVP 151.1K Reputation points MVP
    2025-01-08T22:20:22.83+00:00

    Well, you really shouldnt be using an active account for this. Convert it to a shared mailbox , disable the account and simply simply send the customer notifications as that mailbox, no need to really authenticate to it

    If that is not possible, then you can create a conditional access policy to block access to 365 workloads:

    https://learn.microsoft.com/en-us/microsoft-365/admin/add-users/remove-former-employee-step-1?view=o365-worldwide#block-a-former-employees-access-to-microsoft-365-services

    or use a conditional access policy to block logon access to all apps or from only trusted IPs etc...


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.