Deleting Users from Mimecast

Document created by user.oxriBaJeN4 Employee on Sep 14, 2015Last modified by user.oxriBaJeN4 Employee on Sep 19, 2017
Version 6Show Document
  • View in full screen mode

Administrators can delete user accounts from either their Mimecast account or from their internal LDAP environment. Typical reasons for this would be for account management, or to ensure that inbound messages to a particular user are no longer accepted by Mimecast.

User accounts cannot be deleted until all accepted email (such as emails in the Delivery or Held queues) for that user are processed by Mimecast.

Address Validation

 

Mimecast provides different options to validate the recipient of an inbound email. Depending on the Recipient Validation method configured for the Internal Domain, and the status of the user account, will determine if the email will be accepted or not.

 

Email Address accounts have an icon which displays the status of this account, i.e. whether the account is added to the Internal Domain based on a Directory Sync, or because of being a Known Recipient (i.e. Mimecast has processed an email for this address, and then added the user account to the Internal domain).

 

For example, if the Recipient Validation method is set to LDAP users only, and the user account status is Known Recipient, an inbound email to this address would be rejected as an Invalid Recipient. If Validation is set to Known Recipients, emails will be accepted for any LDAP or manual email addresses within the Internal Domain.

Validation methods can be configured differently for each internal Domain within a Mimecast Account. The validation method can only be configured by Mimecast Support

Deleting Users from Mimecast

 

We recommend you do not delete email address accounts from your Mimecast account. If an address is purged from the User Directory, any active items relating to that user (e.g. accepted email) won't be added to the archive, and therefore won't be available. All existing emails in the archive will be available when you perform an archive search.

 

It is not possible to delete Directory synced email address accounts from your Mimecast account, as these would be added again during the next Directory Synchronization. To delete user accounts, they must first be removed from the Directory, and then removed from Mimecast.

A retention adjustment can also be used to permanently remove emails for a specific user from the archive if required.

Deleting a User

 

To delete a user from Mimecast:

  1. Log on to the Administration Console.
  2. Click on the Administration menu item. A menu drop down is displayed.
  3. Click on the Directories | Internal Directories menu item. The internal directory is displayed.
  4. Click on the Domain to which the user's email address belongs.
  5. Right click on the Email Address to be deleted. A popup menu is displayed.
  6. Click on the Purge Address menu item. A warning notification is displayed and includes a list of all the log entries that will also be purged:
    Address_purge_confirmation.png
  7. Click on the Confirm Data Removal button inside the notification.

 

Deleting Multiple Users

 

To delete multiple users:

  1. Log on to the Administration Console.
  2. Click on the Administration menu item. A menu drop down is displayed.
  3. Click on the Directories | Internal Directories menu item. The internal directory is displayed.
  4. Click on the Domain to which the user email addresses belongs.
  5. Click in the Tick Box on the left of each email address.
  6. Click on the Purge Selected Addresses button. A warning notification is displayed and includes a list of all the log entries that will also be purged:
  7. Click on the Confirm Data Removal button inside the notification.

 

Once an email address account has been marked for deletion, it will be added to the purge cycle for that evening. Once purged, although the email address account is no longer listed in the internal domain, archive searches can still be performed by administrators.

 

Removing Users from the Purge Address List

 

When a user's account is deleted, it is added to the purge address list. You can remove users from this list to reverse a user's deletion.

  1. Log on to the Administration Console.
  2. Click on the Administration menu item. A menu drop down is displayed.
  3. Click on the Directories | Internal Directories menu item. The internal directory is displayed.
  4. Click on the View button.
  5. Click on the Address Purge List menu item. A list of deleted users is displayed.
  6. Right click on the Email Address to be removed. A popup menu is displayed.
  7. Click on the Remove Item menu item.

 

Deleting Users from Active Directory

 

When accounts are deleted from Active Directory, the account is not deleted from Mimecast. Instead it's status is changed from "Extracted from Directory" to "Message in Transit" after the next directory synchronization. This means that if your recipient validation is set to "Directory Users" only, external senders will no longer be able to send inbound emails to these addresses. Only users with a cloud password for that account can access the content of the messages for that address.

A protection mechanism is in place that only allows 10 Active Directory addresses to be updated during a synchronization. This is to prevent any mass changes should a customer experience a configuration issue internally.

5 people found this helpful

Attachments

    Outcomes