Forum Discussion
Can't view/edit dynamic membership rules for Azure AD 365 dynamic group I created. Error code 403
This error message is indicating that the current user does not have the required permissions to access the Azure AD dynamic group. To troubleshoot this, check if the user has been assigned the correct role in Azure AD. Make sure the user has at least the "Global administrator" role or the "Cloud device administrator" role.
If the user still doesn't have the necessary permissions, check if there are any Azure AD policy restrictions in place that could be blocking access. You can do this by navigating to the Azure AD portal, going to the "Azure Active Directory" section, policies in place that might be blocking the ability to edit the dynamic group rules.
- If I look at Roles and administrators I see that I am definitely a global administrator. I logged into https://aad.portal.azure.com/ and clicked through to Azure Active Directory. I see the overview page for our tenant, but I can't see anything labelled "Access control (IAM)". Any chance you could upload a screenshot showing where to find it, please?
Dynamic group memberships have not been updated due to system delays. We’re working to resolve the issue.
- Typing mistake, I was writing policies instead wrote IAM apologies
Try using a different account with administrative permissions to see if that resolves the issue or
Ensure that the Azure Active Directory service is functioning correctly and there are no known outages affecting the service.
