1. Disable User: In AD disable the user account and reset password, ensure user is disabled in M365 from sign on
2. Email: Specify with offboarding request what to do with mailbox
3. Default: Convert to shared mailbox. If we are retaining the mailbox, be sure to move the disabled user to the People/Disabled Pending (Active Mailbox) OU
4. List users which require full mailbox access
5. Setup OOO (out of office), the form should designate name, email address (number if applicable) of whom to contact
6. Remove all M365 licenses and true up license count to reflect current user count
7. Groups & Security: Remove user from mail groups and permission groups, move user to disabled users OU
8. Hide user from GAL (global address list). Steps to hide: Add mailNickname attribute on user in AD, set value to username, ie jsmith (this is required for next step to work)
9. Having completed step 4a above, next step is to edit the attribute msExchHideFromAddressLists and set value to: TRUE
10. Cloudsync: Disable user (if the OU is ADsynced, you can skip disabling as disabling the AD account disables CS) and verify with offboarding request if conversion of user files to shared folder in cloudsync or deletion of accounts
11. Network User folder/OneDrive access: Locate any networked/cloud drive folders and provide access to POC and manager
12. User Laptop: Copy local files & delete/purge
13. Copy files: from (Desktop, C:/drives, Temp folders, etc.) on laptop to a shared Nalu folder, specify location to POC (eg, HR or Manager). 
14. Purge files: once files are successfully copied over/shared, delete all local files. Due to HIPPA requirements, all local files that might contain Patient details must be purged.
15. Final Confirmation: with POC steps completed and ask for pending items/special requests

Updated as of 04/4/2022