RBAC required for -initiating a one-time event that will sign a user out of theirOffice 365 sessions

Occasional Contributor

Looking for the permissions required for our support staff with the Role of "User Management Administrator" in order to perform a one-time event that will sign them out of Office 365 sessions.

We are trying to reset sessions for a terminated user.


The tier1 support staff do not have any rbacs for sharepoint /exchange currently and as a result the option to reset the connections ( available in the onedrive section) is not available to them

Would there be a specifc rbac that will allow the "User Management Administrator Role" to have these options turned on?




Any suggestions..





1 Reply

The cmdlet you need access to is part of the AzureAD PowerShell module, which sadly still lacks proper RBAC control. That's a very good question to ask on the Admin AMA we will have soon: https://techcommunity.microsoft.com/t5/Office-365-Blog/quot-Ask-Microsoft-Anything-quot-on-Office-36...