I'm crossing over from IBM Domino to Exchange 2013.

One of the processes in Domino is that I can create a "Inactive" security group, of which contains terminated employees.
The group will deny that account to Mail Server, but still allow that account to receive emails until such time as it's decided to archive then remove the account.

Can this setup be done with Exchange 2013? If say any guidance how?

What do you mean by deny to mail server but still allow retireve email?

If concern is just to prevent user from logging in , you can simply change user's AD account password and set a automated reply on mailbox communicating Mr.A has left the organization and any concerns may be handled by Mr.B or vice versa  & later disable / remove mailbox per business blueprint.

Other way to preserve emails for long time is to use Litigation Hold.

In Exchange 2010 and Exchange Online, introduced Litigation Hold to allow you to immutably preserve mailbox content to meet long term preservation and eDiscovery requirements. When a mailbox is placed on Litigation Hold, mailbox content is preserved indefinitely.

For more details refer link :

http://blogs.technet.com/b/exchange/archive/2013/12/11/litigation-hold-and-in-place-hold-in-exchange-2013-and-exchange-online.aspx

Convert the user mailbox to shared mailbox, so AD a/c is disabled but still can receive emails.

Hi,

In exchange 2013, we can set up transport rule to deny suck messages like this. Any recipient in this group cannot send messages but can receive messages.

With such time to archive then remove the account, we can try to use task schedule to run the necessary command one time at certain date.

To archive the messages in these accounts, try to export these messages to PST file.

https://technet.microsoft.com/en-us/library/ff607299%28v=exchg.150%29.aspx

And what do you mean by removing accounts? Removing these accounts from this security group? Or remove these mailboxes from exchange and dont use accounts anymore?

Best Regards.

Thanks everyone for your response.. but following your suggestion still has the problem of orphaned AD accounts and unless I keep a separate list of whose been terminated, there isn't a way to manage terminated users and after a period time...archive their mail, then delete the AD account.
We already are changing the password and hiding from address list, and removing mobile devices from the account, but that seems to be a lot of work, where as I could just move or make the user a member of a "disabled" group it would be way easier that going through all these steps.

If they were a way I can place terminated employees in this "Group", who we need to still receive emails for that account for a period of time, there really doesn't appear to be a way to organize this mess.

My first thought was to create a OU call it "Disabled Accounts", and through GPO deny users the right to log in, but emails will still come in.
This way all accounts that are in this category are easy to see and manage.
I haven't tested this yet but I'm curious of other who are more experienced may have come up with a better solution.