Microsoft 365
Microsoft recently shipped a new way to slice up your Microsoft tenant in Azure AD. These new Microsoft 365 Administrative Units may help support teams and IT teams including Business Unit IT administration the world over. It’s a start. There are limits.
Do you struggle with how to slice up administration of your Microsoft 365 tenant? I know there are many who wish they could segment their services, and that is not this feature. Licensing administration and user support and even MFA support may find a huge boost with this new feature set. Have you ever wished there was an easy way to segment your tenant so you could delegate permissions more granularly to group of operators or admins? Now there is… Administrative Units also known as AUs are now in Preview.
Download this infographic above “Slice up your Microsoft 365 Tenant Administration with Administrative Units” as an image or as a PDF
*Now in Preview* Microsoft has introduced Administrative Units in Azure AD for creating delegated boundaries within a single tenant for user and group administration. It’s also accessible via PowerShell and Microsoft Graph.
Download the “Understanding Microsoft 365 Administrative Units” infographic as jpg, png, or pdf. This image sponsored by CoreView is shared in creative commons share alike. Feel free to use it in your company, share it in your slides, or use it as a reference.
References:
Administrative Units (AUs) require an Azure Active Directory Premium license for each AU admin not required for AU members
Requires Global Administrators rights or Privileged role administrators to create and manage in Azure AD portal or with Graph/PowerShell
AU delegated admins must use M365 Admin Center for managing Users
Currently No management of AUs in Admin Center
No Dynamic Administrative Units… (Yet!)
Odd Elevation of Privileged Path Scenarios AU-scoped administrator can’t reset the password of a user who’s assigned to a role with an organization-wide scope
Devices cannot be made members of AUs. Scoping management of devices in Azure AD
Register now to learn:
February 3 at 11:00AM Eastern & 8:00AM Pacific
OR
February 3 at 2:00 PM Eastern & 11:00AM Pacific