# Technical Reference # M365 Email Groups, Role Inboxes & Responsibilities *Operational reference for office staff, IT admin, and future volunteers — mailing lists, shared mailboxes, licensing, SOPs, and governance.* --- ## Quick Overview SHHA uses two different patterns for email collaboration:

Pattern	Technology	Examples
Committee mailing lists	Microsoft Groups	`shha-all@`, `csc@`, `acc@`
Role-based addresses	Shared mailboxes	`president@`, `cscchair@`, `accchair@`

--- ## Design Principles - **Role continuity over individual ownership** — email addresses stay constant when people rotate in/out. - **Least cost for volunteers** — external volunteers do not require paid M365 licenses. - **Operational traceability** — group membership changes trigger Power Automate notifications. - **Institutional archive** — `itadmin@` is included in all groups as a permanent archive recipient. --- ## Microsoft Groups (Mailing Lists) Each committee has a Microsoft Group that acts as its mailing list.

Group	Address
All members	`shha-all@sandiahomeowners.org`
CSC	`csc@sandiahomeowners.org`
ACC	`acc@sandiahomeowners.org`
Others	One group per committee

**Behavior:** Sending to the group distributes to all members. Membership is maintained by staff (primary owner: Anna). External participants can be included. --- ## Shared Mailboxes (Role Inboxes) Chair and executive role addresses are shared mailboxes tied to positions, not people.

Role	Address
CSC Chair	`cscchair@sandiahomeowners.org`
ACC Chair	`accchair@sandiahomeowners.org`
President	`president@sandiahomeowners.org`
Vice President	`vicepresident@sandiahomeowners.org`
Secretary	`secretary@sandiahomeowners.org`
Treasurer	`treasurer@sandiahomeowners.org`

### Access model - People do **not** log in directly as the role mailbox. - Authorized users open the shared mailbox from their own licensed account. - Example: `phil.krehbiel@sandiahomeowners.org` can open `accchair@sandiahomeowners.org`. ### When leadership changes 1. Remove predecessor access. 2. Grant successor access. 3. Keep the role mailbox address unchanged. --- ## Archive Mailbox (`itadmin@`) - `itadmin@` is a member of **all** groups. - Purpose: permanent archive and continuity. - `itadmin@` is **not actively monitored** for normal operations. --- ## Power Automate Membership Notifications A Power Automate flow sends email notifications whenever group membership changes. - Provides audit visibility. - Alerts staff to unexpected changes. - Supports handoffs and troubleshooting. --- ## Licensing and External Volunteers

User type	License needed?	Capabilities
External volunteers	No	Group email delivery, SharePoint guest access
Licensed staff / admin	Yes (paid M365)	Group administration, shared mailbox access, full portal

--- ## Responsibilities Matrix

Responsibility	Primary	Backup	Notes
Maintain committee group membership	Anna (staff)	IT admin	Add/remove members, verify accuracy
Manage shared mailbox permissions	Anna + IT admin	IT admin	Remove predecessor, add successor
Ensure `itadmin@` in all groups	IT admin	Anna	Required for archive continuity
Monitor membership-change notifications	Anna	IT admin	Power Automate emails = operational signal
Troubleshoot delivery/access issues	IT admin	Anna	Includes mailbox permissions and group settings

--- ## SOP: Add a Person to a Committee Mailing List 1. Confirm committee and target group address. 2. Verify whether person is internal staff or external volunteer. 3. Add to the correct Microsoft Group membership. 4. Confirm `itadmin@` remains a member. 5. Verify Power Automate sends membership-change notification. 6. Ask requester to test delivery (or send a test message). --- ## SOP: Remove a Person from a Committee Mailing List 1. Confirm removal request and effective date. 2. Remove member from the Microsoft Group. 3. Verify Power Automate notification is received. 4. If person held a role, check related shared mailbox permissions. --- ## SOP: Leadership Transition for Role Inbox 1. Identify affected role mailbox (e.g., `accchair@`). 2. Remove outgoing person's mailbox permissions. 3. Grant incoming person's mailbox permissions. 4. Validate that incoming person can open the shared mailbox from their own account. 5. Keep address and historical content in place for continuity. --- ## SOP: New Committee Creation 1. Create new Microsoft Group for the committee. 2. Add initial committee members. 3. Add `itadmin@` as member for archiving. 4. Ensure membership-change notifications are active. 5. Record the group in the committee/group inventory. --- ## Governance Rules - Every committee must have exactly one official mailing-list group. - Every committee group must include `itadmin@`. - Shared mailbox addresses represent roles and must not be treated as personal identities. - Access to shared role inboxes must be updated promptly on leadership change. - Membership changes should be performed by staff owner (Anna) or IT admin only. --- ## Recommended Recordkeeping Maintain a simple inventory table (in the wiki or internal operations file) with: - Committee name - Group email address - Current chair role mailbox (if applicable) - Current permission holders - Last membership review date - Last updated by

This makes volunteer/staff handoff much easier.

--- ## Common Issues and Checks ### Person does not receive committee emails - Member exists in correct Microsoft Group - Email address is correct - Sender used the correct group address - Recent change triggered notification (confirms update happened) ### New chair cannot open role mailbox - Shared mailbox permission was granted to the person's licensed account - User is opening mailbox from their own account context - Predecessor access was removed (to avoid confusion) ### Missing archive history - `itadmin@` is still a member of the affected group - Group delivery settings have not been altered --- ## Handoff Checklist (Staff / Volunteer Transition) - Review all committee group memberships for accuracy. - Verify all active chairs/executive roles have correct shared mailbox access. - Remove stale permissions from former role holders. - Confirm `itadmin@` is in every group. - Confirm membership-change notification flow is working. - Update inventory table and date-stamp the review. --- ## Key Contacts and Ownership

Role	Contact
Group membership owner	Anna (staff)
Technical owner / escalation	IT admin
Archive mailbox	`itadmin@` (not actively monitored)

**If ownership changes, update this section immediately.**

--- ## Related Resources - [M365 Email Building Blocks](/books/shha-it-help-guide/page/m365-email-building-blocks) — understand the four email patterns (personal mailbox, shared mailbox, mailing list, alias) and when to use each - [SOP: New Users, Mailboxes & Groups](/books/shha-it-help-guide/page/sop-new-users-mailboxes-groups) — step-by-step admin procedures for creating users, shared mailboxes, groups, and aliases # M365 Email Building Blocks SHHA uses four distinct patterns for email addresses in Microsoft 365. Before requesting any new address, understand which pattern fits your need. This page is the reference for anyone planning new committees, roles, or special-purpose addresses. ## The Four Patterns at a Glance

Pattern	What it is	Example	When to use it
Personal mailbox `first.last@sandiahomeowners.org`	A licensed M365 account owned by one person. Has its own login, calendar, OneDrive, etc.	`anna.smith@sandiahomeowners.org`	Office staff and IT admins who need to log in to Microsoft 365 and perform admin tasks. Costs a license.
Shared mailbox `role@sandiahomeowners.org`	A mailbox tied to a position, not a person. Multiple licensed users can open it from their own account. Retains full email history across holders.	`president@sandiahomeowners.org` `cscchair@sandiahomeowners.org`	Any role where you need: (a) a stable address that survives personnel changes, (b) email history inherited by the next holder, (c) the ability for multiple people to send/receive as that address.
Mailing list (Microsoft Group) `committee@sandiahomeowners.org`	A distribution group. Email sent to the address is delivered to every current member — including external guests who have no M365 license.	`csc@sandiahomeowners.org` `shha-all@sandiahomeowners.org`	Any group of people who need to receive the same email. Most committees have one. No license cost for external members.
Alias (additional address on an existing mailbox or group)	An extra email address that delivers to an existing mailbox or group. Not a separate mailbox — just an alternative address for the same destination.	`wildfire@sandiahomeowners.org` → delivers to the ESC group or a specific shared mailbox	One-off or special-purpose addresses (task forces, events, topical inboxes) where you do not need a separate mailbox with its own history. Use when you want a memorable address that maps to something that already exists.

## Which Pattern Do I Need? Walk through these questions when planning a new email address: 1. **Does one specific person need to log in to M365 and perform admin tasks?** - Yes → **Personal mailbox** (requires a license; talk to IT admin) - No → continue 2. **Does the address need its own persistent inbox that survives personnel changes?** - Yes → **Shared mailbox** - No → continue 3. **Does the address need to deliver to a group of people?** - Yes → **Mailing list (Microsoft Group)** - No → continue 4. **Do you just need a convenient address that routes to an existing mailbox or group?** - Yes → **Alias** on the appropriate existing mailbox or group - No → talk to IT admin to figure out the right approach ## Combining Patterns For a full committee setup you typically create **all three**:

What	Pattern	Example for a new "Wildfire Preparedness" task force
Committee mailing list	Microsoft Group	`WPC@sandiahomeowners.org`
Chair inbox	Shared mailbox	`WPCChair@sandiahomeowners.org`
Friendly alias (optional)	Alias on the group	`wildfire@sandiahomeowners.org` → delivers to `WPC@`

You generally do **not** need to create personal mailboxes for the members — external volunteers receive group email at their personal addresses (Gmail, Yahoo, etc.) at no license cost. ## Archive Rule Every mailing list (Microsoft Group) **must** include `itadmin@sandiahomeowners.org` as a member. This is the archive account that preserves all committee email for continuity and records. It is not monitored for support. ## Cost Summary

Pattern	License cost
Personal mailbox	Requires a paid M365 license
Shared mailbox	Free (up to 50 GB; no license unless it exceeds the limit)
Mailing list (Group)	Free
Alias	Free (added to an existing mailbox or group)

## Where to Go Next - **Need to create a new user or shared mailbox?** See *SOP: Add a New User & Create a Shared Mailbox* (next page in this chapter). - **Need to add/remove members from an existing group?** See the SOPs in *M365 Email Groups, Role Inboxes & Responsibilities*. - **Not sure what you need?** Email with a description of the goal and IT admin will recommend the right pattern. # SOP: New Users, Mailboxes & Groups This SOP is written for SHHA staff who are comfortable with basic Microsoft admin work and need a reliable step-by-step process for setting up new groups, shared mailboxes, and related addresses. **Start here every time:** [admin.microsoft.com](https://admin.microsoft.com) --- ## Quick Start: What Are You Trying to Set Up?

If you need...	Go to this section
A new task-force or committee mailing address that sends to all members	[SOP A: Create a Microsoft 365 Group (Mailing List)](#bkmrk-sop-a%3A-create-a-micr)
A role inbox for a chair or lead (keeps history when people rotate)	[SOP B: Create a Shared Mailbox](#bkmrk-sop-b%3A-create-a-shar)
A friendly one-off address like wildfire@sandiahomeowners.org	[SOP C: Add an Alias](#bkmrk-sop-c%3A-add-an-alias-)
An internal staff account with first.last@sandiahomeowners.org login	[SOP D: Add a Licensed User](#bkmrk-sop-d%3A-add-a-new-lic)
An external volunteer using Gmail/Yahoo/etc.	[SOP E: Add an External Guest](#bkmrk-sop-e%3A-add-an-extern)

--- ## Task Force Fast Path (Most Common New Setup) For a new short-term task force, the normal pattern is: 1. Create a **Microsoft 365 Group** for the task-force mailing list. 2. Add members (including external guests) and always include `itadmin@sandiahomeowners.org`. 3. Create a **Shared Mailbox** for the task-force lead/chair if they need role continuity. 4. Add an optional **Alias** (for example, `wildfire@sandiahomeowners.org`) if a friendlier address is useful. 5. Test email delivery and update the Quick Links directory. If you only need one address that emails the whole task force, do **SOP A** only. --- ## SOP A: Create a Microsoft 365 Group (Mailing List) **Use this for:** any committee/task-force address that should email all members. **Menu path:** [admin.microsoft.com](https://admin.microsoft.com) → **Teams & groups** → **Active teams & groups** → **Add a group** ### Step-by-step 1. Open [admin.microsoft.com](https://admin.microsoft.com) and sign in. 2. In the left menu, click **Teams & groups**. 3. Click **Active teams & groups**. 4. Click **Add a group**. 5. Select **Microsoft 365** as the group type, then click **Next**. 6. Enter: - **Name**: Full task-force name (example: Wildfire Preparedness Task Force) - **Description**: Short purpose statement Click **Next**. 7. Add at least one **Owner** (usually office staff), then click **Next**. 8. Set: - **Group email address** (example: `wildfiretf` → `wildfiretf@sandiahomeowners.org`) - **Privacy**: usually **Private** - Leave "Create a team for this group" **off** unless Teams is explicitly needed Click **Next** then **Create group**. 9. Open the new group, then go to **Settings**. 10. **Enable external email:** turn on **Let people outside the organization email this group**. 11. **Enable inbox delivery:** turn on **Send copies of team emails and events to team members' inboxes**. 12. Go to **Members** → **Add members**. 13. Add all task-force members (internal and external as available). 14. **Required:** Add `itadmin@sandiahomeowners.org` as a member for archive continuity. 15. Send a test email to the new group address and confirm delivery. ### Done checklist - Group exists - Owners added - All members added - External email enabled - Inbox delivery enabled - `itadmin@` added - Test email delivered --- ## SOP B: Create a Shared Mailbox (Chair/Lead Inbox) **Use this for:** role inboxes that must persist when people rotate (chair, lead, coordinator). **Menu path:** [admin.microsoft.com](https://admin.microsoft.com) → **Teams & groups** → **Shared mailboxes** → **Add a shared mailbox** ### Step-by-step 1. In admin center, go to **Teams & groups** → **Shared mailboxes**. 2. Click **Add a shared mailbox**. 3. Enter: - **Name** (example: Wildfire Task Force Lead) - **Email** (example: `wildfirelead` → `wildfirelead@sandiahomeowners.org`) 4. Click **Save changes**. 5. Open the mailbox details and click **Members** → **Edit** → **Add members**. 6. Add licensed users who should access the mailbox (usually current lead/chair and optional backup). 7. Set **Send As** (or delegation) permissions for the same users. 8. Ask one user to verify in [outlook.com](https://outlook.com) that: - The mailbox appears (or can be manually added) - They can receive mail - They can send with the shared mailbox in the From field ### Important notes - Shared mailboxes are role-based, not person-based. - Do not create separate personal accounts for each chair unless they truly need their own licensed login. --- ## SOP C: Add an Alias (One-Off Friendly Address) **Use this for:** addresses like `wildfire@sandiahomeowners.org` that should route to an existing group or mailbox. **Menu path:** [admin.microsoft.com](https://admin.microsoft.com) → select target group/mailbox → **Email aliases** / **Email address** settings ### Step-by-step 1. Decide destination first: should alias route to the **group** or the **shared mailbox**? 2. For group destination: - Go to **Teams & groups** → **Active teams & groups**. - Select the group. - Open email settings and add alias address. 3. For shared mailbox destination: - Go to **Teams & groups** → **Shared mailboxes**. - Select mailbox. - Open email settings and add alias address. 4. Save changes. 5. Send test email to alias and verify it arrives in the expected destination. --- ## SOP D: Add a New Licensed User (Internal Staff) **Use this for:** staff/admin accounts that need a personal Microsoft login (`first.last@sandiahomeowners.org`). **Menu path:** [admin.microsoft.com](https://admin.microsoft.com) → **Users** → **Active users** → **Add a user** ### Step-by-step 1. Go to **Users** → **Active users** → **Add a user**. 2. Enter name and username (`first.last` format). 3. Generate temporary password and require password change at first sign-in. 4. Assign correct M365 license. 5. Finish adding user. 6. Add user to appropriate groups/shared mailbox access as needed. --- ## SOP E: Add an External Guest (Volunteer) **Use this for:** most volunteers; avoids paid license cost. **Menu path:** [admin.microsoft.com](https://admin.microsoft.com) → **Users** → **Guest users** (or Entra invite flow) ### Step-by-step 1. Invite external user with personal email address. 2. Ask them to accept Microsoft invitation email. 3. After acceptance, add them to needed Microsoft Groups. 4. Verify they receive test group email. --- ## Final Validation (Do This Before You Close the Ticket) - Group email tested - Shared mailbox tested (if created) - Alias tested (if created) - `itadmin@` included in group - Quick Links directory updated with new addresses - Requester notified that setup is complete --- ## Where To Go Next - [M365 Email Building Blocks](/books/shha-it-help-guide/page/m365-email-building-blocks) for choosing the right pattern first - [M365 Email Groups, Role Inboxes & Responsibilities](/books/shha-it-help-guide/page/m365-email-groups-role-inboxes-responsibilities) for governance and handoff rules - [Quick Links & Directory](/books/shha-it-help-guide/page/quick-links-directory) to keep the address list current