SOLVED

What is minimum permission needed to add domains to organizational relationship?

Occasional Contributor

I'm working on setting least-privileges for tasks. In Azure AD-Organizational relationships - Settings what is the least priv I can allocate that allows staff to specify domains in the collaboration restrictions?

 

Currently the person who does this is a Global Admin but I'm sure there must be lesser privilege that allows this? 

1 Reply
best response confirmed by Calum_L1 (Occasional Contributor)
Solution

Only GA can do that. You can find detailed role descriptions down to the individual scopes here: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-ro...