Nov 27 2019 06:11 AM
I understand how I can adjust the scope of an MCAS Policy to specific users or user groups, is there any way to do this for specific Admin Roles, i.e. SPO, EXO or Teams admins or any of the other Azure AD admin roles?
Dec 17 2019 12:06 PM
https://docs.microsoft.com/en-us/cloud-app-security/manage-admins
The documentation above covers the possible admin roles.
Dec 18 2019 05:56 AM
@Banu Jafarli Sorry, I was not very clear, I am asking about the ability to create a policy that would monitor activities performed by users in a specific Admin Role. The filter shown below lets me pick users, or groups, but not Roles. When we use Azure AD Privileged Identity Management, the people that have enabled a specific role can vary, in some scenarios it could be helpful to have a policy to monitor various PIM managed roles.