Try this first
- 1Microsoft 365 admin: user > Block sign-in AND Reset password. Just changing password keeps active sessions open.
- 2Force "Sign out all sessions" (Microsoft Entra > user > Authentication). Invalidates phone tokens and Outlook-app sessions too.
- 3Remove shared mailbox access and SharePoint permissions. Do not forget shared drive mappings.
- 4External services with SSO via M365 lock automatically; tools with their own logins (DocuSign, Trello, HubSpot) do not. Walk through those.
- 5Change passwords for shared accounts (guest Wi-Fi, the company LinkedIn, etc.).
When to bring us in
On a contentious exit, or when access to client data was critical, an audit helps: what did that person recently download? We run that in the M365 Audit Log for you.
See also
- I think I clicked a phishing linkNo shame, happens to everyone. The next fifteen minutes matter.
- A colleague's account is acting strangelySending mail in their name, rules hiding folders, unusual sign-ins. Suspicious.
- Lost the MFA app: new phone, no backup codesClassic problem after a phone upgrade. You are not the first to be locked out.
None of the above fits?
Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.
Or skip the DIY entirely
Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.