What is IMAP email migration?

IMAP email migration is the process of transferring emails from one IMAP email server to another. This includes copying all messages, folders, and folder structures between email providers like Gmail, Outlook, Yahoo, and any server that supports the IMAP protocol. Mailbox Taxi automates this entire process with a simple desktop interface.

How do I migrate emails between IMAP servers?

With Mailbox Taxi, you simply select your source and destination email providers, enter your credentials, test the connection, and click Start. The tool handles all the complexity of IMAP synchronization, folder mapping, and message transfer. You can migrate between any combination of supported providers or custom IMAP servers.

Is my email data safe during migration?

Absolutely. Mailbox Taxi runs 100% on your local desktop — your email credentials and messages never pass through any third-party cloud servers. The connection between your machine and the email servers uses the same TLS encryption as your regular email client.

How long does an IMAP migration take?

Migration speed depends on the number of emails, their size (attachments), and your internet speed. A typical mailbox with 10,000 emails takes roughly 15–30 minutes. Mailbox Taxi's parallel processing feature lets you migrate multiple mailboxes simultaneously, significantly reducing total time for batch migrations.

Can I migrate from Gmail to Outlook (or vice versa)?

Yes! Mailbox Taxi supports migration between any combination of its 10+ supported providers. Gmail to Outlook, Outlook to Yahoo, iCloud to Gmail — any direction works. You can also migrate to and from custom IMAP servers.

Will my original emails be deleted after migration?

No. Mailbox Taxi copies emails from the source to the destination. Your original emails remain untouched on the source server. Think of it as a copy operation, not a move.

Do I need technical knowledge to use Mailbox Taxi?

Not at all. Mailbox Taxi is designed for everyone — from IT professionals managing enterprise migrations to individuals switching personal email providers. The interface guides you through each step, and pre-configured provider settings mean you don't need to know IMAP server addresses or port numbers.

Which email providers does Mailbox Taxi support?

Mailbox Taxi supports Gmail, Outlook/Office 365, Yahoo Mail, iCloud Mail, Zoho Mail, AOL Mail, ProtonMail (via ProtonMail Bridge), Fastmail, GMX, Yandex Mail, and any custom IMAP server. If your provider supports IMAP, Mailbox Taxi can handle it.

Can I migrate multiple email accounts at once?

Yes. Mailbox Taxi supports batch migrations via CSV import. Prepare a CSV file with your account details, import it, and run all migrations in parallel. This is ideal for IT teams handling company-wide email migrations or MSPs managing multiple clients.

What happens if the migration fails or my internet drops?

Mailbox Taxi has built-in crash recovery and pause/resume functionality. If your connection drops or the app crashes, simply restart and resume — it picks up exactly where it left off without re-downloading emails or creating duplicates.

Does Mailbox Taxi work with custom IMAP servers?

Yes. Beyond the 10+ pre-configured providers, you can connect to any IMAP server by entering the hostname, port, and security settings manually. This works for self-hosted servers, corporate email systems, and niche providers.

How much does Mailbox Taxi cost?

Mailbox Taxi will be a one-time purchase with no per-mailbox fees, no monthly subscriptions, and unlimited migrations included. Join the waitlist to be notified when pricing is announced and to lock in early access benefits.

Does Mailbox Taxi work with ProtonMail?

Yes, through ProtonMail Bridge. ProtonMail Bridge is a free desktop app from ProtonMail that provides local IMAP access to your ProtonMail account. Once Bridge is running, Mailbox Taxi connects to it like any other IMAP server.

Will my folder structure be preserved during migration?

Yes. Mailbox Taxi preserves your complete folder hierarchy when migrating between servers. Your inbox, sent, drafts, and custom folders are all replicated on the destination server exactly as they appear on the source.

What operating systems does Mailbox Taxi support?

Mailbox Taxi is a desktop application available for Windows, macOS, and Linux. It runs natively on all three platforms with the same features and performance.

Why does my migration account hit access denied on shared mailboxes when it has Global Admin?

Global Admin in Entra ID does not automatically grant Full Access to every mailbox. Mailbox access is a separate Exchange permission applied at the mailbox object. You need to explicitly grant Full Access to the migration account on each shared mailbox.

Does automapping affect a migration?

Yes, indirectly. When you grant Full Access with automapping enabled, the shared mailbox auto-attaches to the migration account's Outlook profile, which can lock IMAP sessions in unhelpful ways. Grant access with automapping disabled for clean migration sessions.

Do shared mailboxes need a license on Microsoft 365?

Not below 50GB. A shared mailbox over 50GB or with In-Place Archive enabled requires an Exchange Online Plan 2 license (or equivalent). If you are not sure of the size, check before migration — a license added mid-migration delays things.

How long does Full Access permission take to propagate?

Microsoft 365 documents up to 60 minutes for permissions to apply, though in practice it is usually a few minutes. If the access denied error persists 15 minutes after granting permission, look for another cause.

Can I migrate a shared mailbox without admin involvement on the destination?

No. Whatever destination you are moving to, the migration account needs explicit access to the shared mailbox on the destination side to write into it. That requires admin action.

Troubleshooting

Fixing Shared Mailbox Access Denied During Migration

Resolve shared mailbox access denied errors during migration by fixing Full Access permissions, automapping, and the M365 50GB license rule for shared mailboxes.

Priya Shah

Senior Systems Engineer

Updated May 21, 2026

· 7 min read

Shared office workspace representing shared mailbox access

The user mailboxes migrated fine. Then the batch hit the shared mailboxes and every single one failed with Access denied or The specified mailbox does not exist for this user. The migration account is a Global Admin, it has Full Access on every user mailbox, and yet the shared mailboxes refuse it. Three things cause this, all at once sometimes: missing Full Access on the shared mailbox itself, automapping interference, and the often-forgotten 50GB license rule on Microsoft 365.

Skip the manual setup — let Mailbox Taxi handle it

One desktop app, every IMAP provider, zero data leaving your machine.

Why shared mailboxes are a separate problem

Exchange treats shared mailboxes as distinct objects with their own permission ACL. Granting your migration account Global Admin or even Exchange Admin gives it the right to manage shared mailboxes — to assign permissions, change quotas, modify settings. It does not give it the right to read or write the contents. That is a per-mailbox permission called Full Access (or equivalent on other platforms) and you have to grant it explicitly.

This catches people out because the same Global Admin can do anything they want via the admin UI, including managing the mailbox they cannot open. The IMAP layer enforces the mailbox-level ACL strictly.

Cause 1: missing Full Access on the shared mailbox

The most common cause. The fix on Microsoft 365 sources or destinations:

Add-MailboxPermission -Identity "shared@example.com" `
  -User "migration@example.com" `
  -AccessRights FullAccess `
  -InheritanceType All `
  -AutoMapping $false

The same operation in the Exchange admin center: open the shared mailbox, mailbox delegation, add the migration account to Read and manage. The web UI does not let you disable automapping; if that matters (see next section), use PowerShell.

On a Gmail / Google Workspace source side, the equivalent is a Delegate setting in the user's account, granted by an admin via the Admin SDK or via the user's own settings if you have the password.

On self-hosted IMAP, the model varies. Dovecot uses ACLs via the acl plugin and the dsync tool with admin override. Cyrus uses cyradm with setaclmailbox. Plain IMAP servers without ACL plugins do not really have a shared mailbox concept — the "shared" mailbox is just a regular mailbox whose credentials are known to multiple humans.

Source and destination both need permissions

For a migration to read from the source and write to the destination, the migration account needs Full Access (or equivalent) on the shared mailbox at both ends. Granting it only on the destination still produces access denied on the read.

Cause 2: automapping is interfering

Automapping is the Exchange feature that automatically attaches any mailbox you have Full Access to in your Outlook profile. For a migration account, that is exactly what you do not want — your migration tool opens IMAP sessions against the shared mailbox directly, and the automapped Outlook profile can hold file locks or contend for connection slots.

Symptoms of automapping interference during migration:

Intermittent Too many simultaneous connections against the shared mailbox.
Slow open of the shared mailbox on the migration account's IMAP session.
MailboxInTransition or similar transient errors that resolve on retry.

The fix: always grant Full Access with -AutoMapping $false. If you granted it without that flag, remove the permission and re-add it with automapping disabled.

Remove-MailboxPermission -Identity "shared@example.com" `
  -User "migration@example.com" `
  -AccessRights FullAccess `
  -Confirm:$false

Add-MailboxPermission -Identity "shared@example.com" `
  -User "migration@example.com" `
  -AccessRights FullAccess `
  -AutoMapping $false

You will lose access for the propagation window (a few minutes) but you avoid the long-tail flakiness automapping causes.

Cause 3: the shared mailbox exceeds 50GB on Microsoft 365 without a license

Microsoft 365 lets shared mailboxes exist unlicensed up to 50GB. Above that, you need an Exchange Online Plan 2 license attached, or the mailbox is essentially read-only and your migration writes will fail. The error wording varies — quota exceeded, mailbox is full, or a generic access denied depending on which API path your migration tool uses.

To check:

Get-MailboxStatistics -Identity "shared@example.com" |
  Select-Object DisplayName, TotalItemSize

If TotalItemSize is anywhere close to 50GB and you are migrating into this shared mailbox, attach a license before continuing. If the size is well below 50GB, this is not your cause.

The same rule applies if In-Place Archive is enabled on the shared mailbox. Archived items count toward a separate quota and require Plan 2 regardless of primary mailbox size.

Cause 4: ApplicationImpersonation removed

If your migration was working last month and is failing now on shared mailboxes, Microsoft's deprecation of the ApplicationImpersonation RBAC role may be your cause. Microsoft removed it from Exchange Online in early 2024–2025. Tools that relied on it to assume identity across mailboxes now need either per-mailbox Full Access (as above) or app-only auth via Microsoft Graph.

For an IMAP-based migration tool like Mailbox Taxi, this rarely applies — IMAP migrations use Full Access directly. For tools using EWS or older Microsoft Graph paths, the fix is to re-grant Full Access mailbox by mailbox.

Do not grant Full Access to every mailbox preemptively

Some guides suggest scripting Full Access for the migration account across every mailbox in the tenant. That works, but it is excessive for a migration and it leaves a powerful permission in place after the work is done. Grant only what is needed, then revoke when migration completes.

A working order of operations for shared mailboxes

List every shared mailbox in scope
Get the full set from the source admin console before you start.
Grant Full Access on the source
Add your migration account with AutoMapping disabled at the source for read access.
Grant Full Access on the destination
Same operation on the destination side for write access.
Verify license on Microsoft 365 destinations
Attach Exchange Online Plan 2 to any shared mailbox you expect to exceed 50GB.
Wait 10–15 minutes for permission propagation
Hitting it sooner usually fails. Use the time to confirm other pre-flight items.
Run a single-mailbox test migration
Pick one shared mailbox and migrate it before queuing the rest.
Queue the remaining shared mailboxes
Run them in a batch separate from user mailboxes so the permission and licensing context is consistent.
Revoke permissions after completion
Remove Full Access from the migration account post-migration.

For post-migration delegate access issues that often appear alongside shared mailbox problems, see the delegate access fix. Tenant-to-tenant moves have additional permission wrinkles — the tenant-to-tenant migration guide covers the cross-tenant identity model. The Exchange to Office 365 guide covers the broader migration path, and the Office 365 migration guide the larger landscape. For other access errors during migration, the email migration troubleshooting hub is the index.

Try Mailbox Taxi

Migrate your mailbox the easy way

Join the waitlist for early access and lock in launch pricing.

Fixing Shared Mailbox Access Denied During Migration

Skip the manual setup — let Mailbox Taxi handle it

Why shared mailboxes are a separate problem

Cause 1: missing Full Access on the shared mailbox

Cause 2: automapping is interfering

Cause 3: the shared mailbox exceeds 50GB on Microsoft 365 without a license

Cause 4: ApplicationImpersonation removed

A working order of operations for shared mailboxes

List every shared mailbox in scope

Grant Full Access on the source

Grant Full Access on the destination

Verify license on Microsoft 365 destinations

Wait 10–15 minutes for permission propagation

Run a single-mailbox test migration

Queue the remaining shared mailboxes

Revoke permissions after completion

Migrate your mailbox the easy way

Related reading

Fixing Lost Delegate Access After Email Migration

How to Migrate Exchange to Office 365

Office 365 Migration: The Definitive Playbook

Email Migration Troubleshooting: The Complete Reference

Tenant-to-Tenant Migration: Microsoft 365 and Workspace

Migrate your mailbox the easy way

Skip the manual setup — let Mailbox Taxi handle it

Why shared mailboxes are a separate problem#

Cause 1: missing Full Access on the shared mailbox#

Cause 2: automapping is interfering#

Cause 3: the shared mailbox exceeds 50GB on Microsoft 365 without a license#

Cause 4: ApplicationImpersonation removed#

A working order of operations for shared mailboxes#

List every shared mailbox in scope

Grant Full Access on the source

Grant Full Access on the destination

Verify license on Microsoft 365 destinations

Wait 10–15 minutes for permission propagation

Run a single-mailbox test migration

Queue the remaining shared mailboxes

Revoke permissions after completion

Migrate your mailbox the easy way

Related reading

Fixing Lost Delegate Access After Email Migration

How to Migrate Exchange to Office 365

Office 365 Migration: The Definitive Playbook

Email Migration Troubleshooting: The Complete Reference

Tenant-to-Tenant Migration: Microsoft 365 and Workspace

Migrate your mailbox the easy way

Why shared mailboxes are a separate problem

Cause 1: missing Full Access on the shared mailbox

Cause 2: automapping is interfering

Cause 3: the shared mailbox exceeds 50GB on Microsoft 365 without a license

Cause 4: ApplicationImpersonation removed

A working order of operations for shared mailboxes