1. Home
  2. Guidance
  3. Portal
  4. Administrator Guide
  5. User Management
  6. Managing Accounts in Closed Organisations
Searching...

Managing Accounts in Closed Organisations

Contents

Purpose

This guide outlines the actions Primary / Local Administrators (PLAs / LAs) in England should take in relation to NHSmail accounts when an organisations Organisation Data Services (ODS) code is no longer valid (it has legally closed).

Organisations administered by the National Administration Service (NAS) should contact their relevant dedicated email support as outlined in Appendix 1.

Background    

Organisations regularly merge, close or open across the health and social care sector meaning changes to ODS codes occur. To ensure contact details are correctly reflected in the NHS Directory, NHSmail accounts must be owned by a legally open organisation with a valid ODS code.

NHSmail accounts belonging to a closed organisation (an ODS code that has been legally closed) must be moved into a replacement, legal, open organisation; either newly created or an existing organisation. If you are unsure if your organisation has legally closed, you can check this through two routes which are:

  1. Via the ODS portal ( NHS Digital ODS Portal) where you can input your ODS code in the Organisation search tool this will provide you with the legal status of the ODS code
  2. Via the NHSmail portal (nhs.net). You will need to log in as an administrator (primary local admin or local admin) and navigate to admin, organisations menu. Search for the ODS code you are an admin of and click into it. Within the organisation details you will see a status as shown below. A closed org will have a status of “Closed”

Primary / Local Administrator preparation

  1. Run a report in the NHSmail Portal to identify all the NHSmail accounts in your closed organisation – reporting guidance is available in the Portal Local Administrator Guide , in section Information governance > Admin Reports.
  2. Liaise with your Human Resources (HR) department to find out whether all user accounts will need to be:
    • transferred out of the closed organisation and into the replacement / new organisation
    • marked as a ‘leaver’ and joined to a replacement / new organisation within 30 days
    • marked as a ‘leaver’ and allowed to be deleted from the service

Note: Ensure when marking accounts as leaver that all disabled accounts, for example those disabled for maternity leave, long-term sickness etc are considered and not just accounts that are ‘active’ or ‘inactive’.

  1. Find out whether existing shared mailboxes will need to transfer into the replacement / new organisation.
    • If there is a local requirement/policy within your organisation to retain any data within the shared mailbox, then please ensure this is carried out before transferring the shared mailbox to the replacement / new organisation or alternatively deleting it. This protects data that is only relevant to the closed organisation.
    • For shared mailboxes that are to be transferred to the replacement / new organisation, review all access to these mailboxes and shared folders to protect sensitive or patient information otherwise the original permissions will remain in place.
  1. Find out whether existing distribution lists (DLs) will need to transfer into the replacement / new organisation.
    • Static and dynamic DLs can be transferred into the replacement / new organisation.
    • Members of static distribution lists can be exported to a csv file and a new list created. The original DL in the closed organisation can be deleted, if no longer required. Distribution list membership should be reviewed at this time.
  2. Check for any existing duplicate NHSmail accounts by running the ‘Possible Duplicate User Report’ (reporting guidance is available in the Portal Local Administrator Guide, in section Information governance > Admin Reports Overview) and:
    • decide on the account that should be transferred (ensure duplicate accounts are not created for users when transferring between organisations)
    • mark as a ‘leaver’ all accounts that are not required to be transferred
  3. Check for any additional services, for example larger mailbox quotas, and confirm whether the additional services are required to transfer to the replacement / new organisation. The additional services will be lost once the account is joined to a replacement / new organisation.

Note: The replacement / new organisation needs to ensure that an agreement has been signed with Accenture to keep any additional services on the mailboxes when it takes ownership of the account. Details can be obtained from helpdesk@nhs.net

  1. Work with your users to ensure any role / organisation related data or emails are locally archived in the closed organisation by using locally procured archiving solutions or using Outlook profiles to export content via .pst files.
  2. Check for guests invited by your organisation by running the Azure AD Guest Access Report.

Note: If any guest accounts are confirmed as no longer required in the new organisation, these can be deleted.

Tasks for the Primary LA (PLA) in ‘Closed’ organisations

  1. Ensure the organisation(s) which your users are transferring into is listed in the NHS Directory(you will need to be logged into your NHSmail account). If the organisation doesn’t have a ‘shortname’ allocated you’ll need to email feedback@nhs.net to set this up, providing the details of the organisation your users need to transfer into including the ODS code

Note: If you do not know what the ODS code is, the published quarterly files are available per organisation type via the NHS England website. If the new organisation doesn’t appear in the list, please email exeter.helpdesk@nhs.net for guidance. Organisations will be published in the NHS Directory as they become available from the ODS team.

  1. Ensure the replacement / new organisation has a nominated Primary Local Administrator (PLA). If you wish to become the PLA for the replacement / new organisation, please email feedback@nhs.net with the information below.
    • Your name, role and current organisation name.
    • The replacement / new organisation name and ODS
    • If you are not the PLA for your existing organisation, please provide confirmation from the Head of HR or Head of IT in the replacement / new organisation that they support your request (please copy them in your request to feedback@nhs.net).
  2. If you wish to become an additional PLA within your organisation, please contact the PLA in the replacement / new organisation. All PLAs can set up additional PLAs, providing they have administrator rights for the organisation the requestor belongs to.
  3. Archive any mailbox content not being transitioned to the replacement / new organisation as per local policy.
  4. Any NHSmail accounts that are identified as needing to transfer into the replacement / new organisation should be marked as a ‘leaver’ and must be joined to the replacement / new organisation within 30 days by the relevant PLA / LA or they will be deleted.

Note: If you have PLA rights for both the closed organisation and the replacement / new organisation, you can use the ‘transfer’ function to avoid following the ‘leaver / joiner’ process. Further information is available in the Portal LA Guide > User Management > Transferring a mailbox between organisations and multiple accounts.

  1. If a disabled account needs to be transferred to a new / replacement organisation, the PLA / LA in the closed organisation would need to re-enable the disabled account before marking it as a ‘leaver’.

The PLA / LA in the replacement / new organisation would need to mark the account as a ‘joiner’ and then disable the account.

      Note: If you have PLA / LA rights for both the closed organisation and the new / replacement organisation, you can use the ‘transfer’ function to avoid following the ‘leaver / joiner’ process.

  1. Mark all accounts that are not required to be transferred to the new organisation as ‘leaver’ and after 30 days they will become eligible for automatic deletion. Make sure this includes any accounts that are disabled (you will need to re-enable any disabled accounts first before they can then be marked as a leaver).
  2. Transfer any distribution lists or shared mailboxes that will be required in the replacement / new organisation.

Note: Dynamic DLs will keep the old rules but will not work automatically. The owner / PLA will need to ensure the rules are updated otherwise sending to the dynamic DL will fail.

  1. Any shared mailboxes or distribution lists no longer required should be deleted in the administration tools. Be mindful that once deleted they cannot be restored.
  2. PLAs / LAs are prevented from creating any new NHSmail accounts in the ‘closed’
  3. Once the above work is complete, if your personal NHSmail account is still owned by the ‘closed’ organisation, mark it as a ‘leaver’ and ensure it is marked as a ‘joiner’ in your replacement / new employing organisation – don’t do this until all other work is complete.
  4. Rescind your LA rights for the ‘closed’ organisation (this will not affect your LA permissions in other valid NHS organisations).

Note: If your account is being marked as a ‘leaver’, the LA rights will be removed automatically.

Tasks for the Primary Local Administrator in the replacement / new organisation

Setting up Local Administrator rights in a replacement / new organisation

A Primary Local Administrator (PLA) must be created in every replacement / new organisation (email feedback@nhs.net if this hasn’t already been done).

PLAs in replacement / new organisations must:

  • ensure they have strong links in place with the closed organisation PLA (if it isn’t the same person)
  • mark accounts as ‘joiner’ within 30 days of being flagged as ‘leaver’ by the closed organisation
  • assign PLA / LA permissions to support NHSmail administration activities as appropriate

Permissions

Access rights for shared mailboxes, static distribution lists, dynamic distribution lists and Local Administrator permissions

LA rights and shared mailbox, static distribution list (SDL) and dynamic distribution list (DDL) memberships are affected when being moved from one organisation to another.

Does the membership / permission stay with the user after transition to a new organisation?
LA rights Primary/LA/Helpdesk Shared mailbox membership Static DL membership Dynamic DL membership
No Yes Yes No

Accounts managed by the portal administration tools

  • After an account is marked as a ‘leaver’, if it is not joined to a new organisation within 30 calendar days it will be eligible for deletion and removed from the NHSmail service.
  • Any LA permissions the user had will be removed when their account is marked as a ‘leaver’ or transferred to the replacement / new organisation; this applies to Primary / Local / Helpdesk administration
  • A leaver will continue to be able to access a shared mailbox in the ‘closed’ organisation they have left unless the permissions are changed by the shared mailbox owner or until it is deleted.
  • Users will continue to be able to access static distribution lists in the ‘closed’ It’s therefore important that PLAs / LAs liaise with users to agree a suitable timescale for deletion.
  • Accounts marked as leavers will retain their current licence until they are marked as a joiner in the new organisation. Once joined to the new organisation the user will have their licence revoked and a default licence will be attached under the new organisation.

Need extra help?

Please call the NHSmail helpdesk on 0333 200 1133 or email helpdesk@nhs.net

If you require any further information, please contact the NHSmail Collaboration Services team at feedback@nhs.net

National Administration Service (NAS) contacts

Email helpdesk@nhs.net
Telephone 0333 200 1133
Last Reviewed Date 12/06/2024
Updated on 12/06/2024
Tagged:

Related Articles

Need Support?
Can’t find the answer you’re looking for? Don’t worry we’re here to help!
Contact Support
back to top