Forum Discussion
Azure AD Risky User license requirements?
Ok so I know to be able to setup Azure AD Risky users / Sign ins and get email alerts you need the M365 E5 license or M365 E3 + Azure AD P2. My question on the license part is do just the system administrators need the P2 license or do all users with a Microsoft 365 E3 license need it?
- Its an user based license, as admin you might be able to configure risky sign in reports . without license risky sign verification/process doesnt processed at user level.
- As a global administrator or any administrator with Azure AD, you don’t require a license to perform any administrative tasks within the role such as user creation, license assignment and so is the setup of Azure AD Risky users / Sign ins and email alerts. It is the role you require and not the license. If you want to verify this on the tenant:
1. Create a user P1 and assign global admin role - assign Azure AD P1 license
2. Create a user P2 and assign global admin role - assign Azure AD P2 license
3. Create a user P3 and assign global admin role – Do not assign any license
4. Sign into each user account in step 1 – 3 and attempt to perform any tasks like those you stated – make observations - All users need P2 in order for you to gather and analyze risky user logs. Please also note that all logs are collected even with P1 license but logs that require P2 visibility will be listed as "Other detected risks", just paraphrasing. You will not be able to drill into it but you will notice existence of more risk detections.
