Blog Post

Microsoft Sentinel Blog

2 MIN READ

How Granular Delegated Admin Privileges (GDAP) allows Sentinel customers to delegate access

Yossi Basha

Microsoft

Mar 20, 2026

Empowering MSSPs and multi-tenant organizations with simplified delegated access: in Public Preview April 16th 2026

Simplifying Defender SIEM and XDR delegated access As Microsoft Sentinel and Defender converge into a unified experience, organizations face a fundamental challenge: the lack of a scalable, compreh...

Updated Apr 16, 2026

Version 5.0

microsoft sentinel

Yossi Basha

Microsoft

Joined November 04, 2018

View Profile

Microsoft Sentinel Blog

Microsoft Sentinel is an industry-leading SIEM & AI-first platform powering agentic defense across the entire security ecosystem.

louee123

Copper Contributor

Apr 15, 2026

Any concrete date for when this will be rolling out? Some of our more eager customers are getting frustrated that we still manage their Sentinel implementations via the Azure Portal primarily 😅

Access via GDAP gives me the temporary user that can't see Log Analytics Workspaces and the delegated permissions via Lighthouse don't cover the Entra ID permissions required to manage it from the Defender Portal (or am i missing something else?)

aklausner
Microsoft
Apr 16, 2026
This is now in public preview
- Jordan Mills
  Brass Contributor
  Apr 17, 2026
  It seems to be broken. Attempts to send an invitation just return an immediate error:
  Failed to send invitation request
  Failed to send governance invitation.
  - Saggie
    Microsoft
    Apr 17, 2026
    Hey Jordan,
    Have you enabled governance invitations in Microsoft Entra Admin Center for the MSSP tenant (Home tenant)?
    
    By default, this option is disabled to eliminate the risk of actors spamming tenants with invitations.
    
    More info here:
    Configure delegated access with governance relationships for multitenant organizations - Unified security operations | Microsoft Learn