Home

RBAC required for -initiating a one-time event that will sign a user out of theirOffice 365 sessions

Highlighted
Occasional Contributor

Looking for the permissions required for our support staff with the Role of "User Management Administrator" in order to perform a one-time event that will sign them out of Office 365 sessions.

We are trying to reset sessions for a terminated user.

 

The tier1 support staff do not have any rbacs for sharepoint /exchange currently and as a result the option to reset the connections ( available in the onedrive section) is not available to them

Would there be a specifc rbac that will allow the "User Management Administrator Role" to have these options turned on?

 

https://blogs.technet.microsoft.com/educloud/2017/06/14/how-to-kill-an-active-user-session-in-office...

 

Any suggestions..

 

 

 

 

1 Reply
Highlighted

The cmdlet you need access to is part of the AzureAD PowerShell module, which sadly still lacks proper RBAC control. That's a very good question to ask on the Admin AMA we will have soon: https://techcommunity.microsoft.com/t5/Office-365-Blog/quot-Ask-Microsoft-Anything-quot-on-Office-36...