cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Scoping a policy to an Admin role

Dean Gross
Silver Contributor

‎Nov 27 2019 06:11 AM

‎Nov 27 2019 06:11 AM

Scoping a policy to an Admin role

I understand how I can adjust the scope of an MCAS Policy to specific users or user groups, is there any way to do this for specific Admin Roles, i.e. SPO, EXO or Teams admins or any of the other Azure AD admin roles?

Labels:
841 Views
0 Likes
2 Replies
Reply
2 Replies
Banu Jafarli

‎Dec 17 2019 12:06 PM

‎Dec 17 2019 12:06 PM

Re: Scoping a policy to an Admin role

https://docs.microsoft.com/en-us/cloud-app-security/manage-admins

 

The documentation above covers the possible admin roles. 

 

@Dean Gross 

0 Likes
Reply
Dean Gross

‎Dec 18 2019 05:56 AM

‎Dec 18 2019 05:56 AM

Re: Scoping a policy to an Admin role

@Banu Jafarli Sorry, I was not very clear, I am asking about the ability to create a policy that would monitor activities performed by users in a specific Admin Role. The filter shown below lets me pick users, or groups, but not Roles.  When we use Azure AD Privileged Identity Management, the people that have enabled a specific role can vary, in some scenarios it could be helpful to have a policy to monitor various PIM managed roles. 

clipboard_image_1.png

0 Likes
Reply