The best Microsoft 365 tips on the web

Administrator roles in Office and Microsoft 365 and Azure

Roles in Microsoft 365! We quite often give global administrator rights to people who need to be able to perform tasks within Microsoft 365.

There is a read-only account to allow people to view the Offiec 365 -> Ideal for a vendor or partner.

You can also use Teams Administrator accounts. To delegate specific roles in the organization.

In this blog all the roles listed that are possible by default in Microsoft 365.

Admin rolesTo whom can this role be assigned?
Exchange adminAssign the Exchange administrator role to users to view and manage your users' mailboxes, Microsoft 365 groups and Exchange Online .

Exchange administrators can: restore deleted items in a user's mailbox. Manage mailboxes, etc..
Global adminAssign the Global Administrator role to users who need global access to most management functions and data in Microsoft's online services.
Giving too many users global access is a security risk best assign 2-4 administrators.
Global readerAssign the role of global reader to users who need to see administrator functions and settings in management centers that the global administrator can see.
Groups adminManage all group settings in management centers, including the Microsoft 365 management center and Azure Active Directory portal.
Helpdesk adminAssign the Help Desk administrator role to users to do the following:
Reset passwords, Force users to log out, Manage service requests, Monitor service status
Office Apps adminUse the Office cloud policy service to create and manage cloud-based policies for Office, Create and manage service requests, Manage the What's New content users see in their Office apps
Monitor service status
Service Support adminAssign the role of Service Support Administrator as an additional role to administrators or users whose roles do not include the following, but still need to do the following: View and share messages in the message center
SharePoint adminAssign the SharePoint administrator role to users to access and manage the SharePoint Online management center.
SharePoint administrators can also:
Create and delete sites, manage site collections and general SharePoint settings
Teams service adminAssign the role of Teams service administrator to users who need to access and manage the Teams management center.
Service administrators of Teams can also:
Manage meetings, conference bridges
Manage all settings for the entire organization, including federation, team upgrades and customer settings for teams
User adminAssign the User Administrator role to users to do the following for all users: - Add users and groups - Assign licenses - Manage the properties of most users - Create and manage user views - Update password expiration policies - Manage service requests - Check service status The User Administrator can also perform the following actions for users who are not administrators and for users assigned the following roles: Directory Reader, Guest Inviter, Helpdesk Administrator, Message Center Reader, Report Reader: - Manage user names - Delete and restore users - Reset passwords - Force users to log out - Update (FIDO) device keys

Also read: Microsoft Teams tips on, PowerShell, remote user experience Microsoft Teams meeting or block download of O365 files on an unknown device

Tagged: ,
0 0 vote
Article review
Please let us know if there are

Inline feedbacks
See all comments
Would love to know your thoughts, please leave a comment.x