Aug 08 2024 01:57 AM
I've been tasked with granting members of our Service desk the ability to perform 2 specific actions against user accounts within the Defender portal. Please see attached screenshot.
Suspend user in Entra ID
Require user to sign in again
Does anyone know if this is possible? I can't find any Microsoft documentation explaining what level of permission is required to perform these actions.
Regards,
Graham
Aug 08 2024 02:56 AM
Aug 08 2024 03:13 AM
Aug 08 2024 05:26 AM
Aug 08 2024 06:30 AM - edited Aug 08 2024 06:30 AM
@micheleariis Having assigned the below roles to a test account, I unfortunately still do not have access to 'Suspend user in Entra ID' or ‘Require user to sign in again’. Please see attached screenshot. I of course cannot assign the Global Administrator role to these helpdesk account.
Aug 08 2024 06:58 AM
Aug 08 2024 07:00 AM
@G_Man If you try on a cloud only user does it work?
Aug 08 2024 07:15 AM - edited Aug 08 2024 07:16 AM
Sorry, which accounts are you referring to? The account that is accessing the Defender portal or the user accounts that need suspending or signed in again?
Currently the account accessing the Defender portal is an EntraID cloud account and the end user accounts are on-prem AD accounts synced with EntraID.
I have a Global Admin account (EntraID / cloud account) that can access all Microsoft systems and this account has the ability to carry out the below actions so it must be possible!
'Suspend user in Entra ID'
‘Require user to sign in again’.