New Blog | Enforce least privilege for Entra ID Company Branding with Organizational Branding role

Microsoft

By jmantu

 

Hello friends,   

 

Im pleased to announce General Availability (GA) of the Organizational Branding role for Microsoft Entra ID Company Branding. 

 

This new role is part of our ongoing efforts to implement Zero Trust network access by enforcing the principle of least privilege for users when customizing their authentication user experience (UX) via Entra ID Company Branding. 

 

Previously, users wanting to configure Entra ID Company Branding required the Global Admin role. This role, though, has sweeping privileges beyond what’s necessary for configuring Entra ID Company Branding.  

 

The new Organizational Branding role limits its privileges to the configuration of Entra ID Company Branding, significantly improving security and reducing the attack surface associated with its configuration. 

 

To assign the role to a user, follow these steps: 

 

1. Log on to Microsoft Entra ID and select Users. 

 

DavidFernandes_0-1713462019261.png

 

 

Read the full post here: Enforce least privilege for Entra ID Company Branding with the new Organizational Branding role

 
0 Replies