Forum Discussion
Using GDAP with Purview Roles for Search and Purge
I'm facing an issue that I believe may be related to how my current employer has set up GDAP, but I am struggling to get a solid answer on the solution to the issue as it's not clear if the problem is simply a limitation through GDAP or something not configured correctly.
Scenario: We have a GDAP relationship set up with 20+ clients that provides us with Entra roles such as Security Operator, User Administrator, etc. Various Entra roles to perform common tasks as an MSP
We are currently unable to perform email purges using Explorer in Defender or Purview, as the role required appears to be only assignable to a user account or group that exists in the tenant in question, and as we are acting through GDAP, there is no account or group to give that role to.
On the back of this, I have several questions/requests:
- Should a GDAP relationship also create some group or guest/external user that roles of this nature can be assigned to?
- Is there something specific we need to do through our GDAP configuration to allow us to search and purge emails?
This is the team's response after I finally tracked down the right people:
“Thank you for your feedback on your current pain points with GDAP as it relates to Microsoft Purview. Currently there is limited support for Microsoft Purview roles in GDAP including the role in question."
Probably not the answer you were looking for, but hopefully that helps a bit?
4 Replies
- JillArmourMicrosoft
Community Manager
Thortonne hello, I have sent and inquiry internally and I will let you know when I get a response.
Thank you JillArmourMicrosoft
- JillArmourMicrosoft
I am still trying to get a response for you! Hang in there.
