Topics Map > Office 365

Microsoft 365 - Use Security Groups to Manage Permissions

Desired sample workflow: You have an account that you manage the calendar permissions for. Instead of having to manage the calendar permissions via the account calendar permissions screen every time you make a change, you can setup a Microsoft security group and manage the permissions via Manifest application.

What is a mail-enabled security group?

Mail-enabled security groups allow you to streamline the process for assigning and managing multiple permissions for a service/calendar.

What do you need to do?

More information on this feature/process

  • All security groups are hidden from the Global Address List - GAL (and cannot be made visible), so only Outlook on the Web will recognize them. Mail folder/calendar/resource permissions to a security group must first be assigned via Outlook on the web. You can paste in the email address when assigning the permissions and select use this address since it wont be visible in the GAL.
  • After the security group is assigned with the desired calendar permissions, users will not receive an automatic email notifying them of their access to the calendar. Users within the security group will have to manually subscribe to the calendar. 
  • Once security group permissions are assigned in Outlook on the web, instead of seeing UUID@wisc.edu, you will see the Manifest Group ID.
  • To manage the members of the security group, use Manifest. Please wait 60 minutes for these changes to be reflected within Microsoft 365.
  • If you want to setup a data driven Manifest group, please contact Manifest team.
  • Security groups can be used as a mailing list, please see Microsoft 365 - Use Manifest email groups to moderate email messages for further details. IMPORTANT: Security groups are not the best tool to use for mail distribution. If your primary goal is to email a group of users, review distribution list options.
  • Once the process has been completed, this group will be published to Microsoft Azure.


Keywords:
microsoft office365 o365 m365 microsoft 365 manifest resources calendars folders email assign requesting ad active directory syncing onedrive data service accounts storage allowed senders sending restrictions alternate address primary 
Doc ID:
63382
Owned by:
O365 S. in Microsoft 365
Created:
2016-05-12
Updated:
2025-05-13
Sites:
DoIT Help Desk, Microsoft 365