Forum Discussion
second tier admin roles and risks
I'm trying to get a basic risk context around some lesser known 365 roles:
- Security administrator
- Helpdesk administrator
- Billing administrator
- User administrator
- Authentication administrator
Could you provide some examples of what 'damage' an individual could do with access to the above roles. Normally I would work off the basic risk concepts such as inappropriate access to sensitive information, loss of service(s) to genuine staff affecting business productivity etc.
- What a given role can and cannot do is detailed here: https://docs.microsoft.com/en-us/azure/active-directory/roles/permissions-reference
