Inherited group-based license service plan checkboxes are now editable but fail on save
Hello, We are observing a possible UI regression in the Microsoft 365 admin center related to group-based licensing. Environment / scenario: - Microsoft 365 admin center - User-level “Licenses and apps” screen - The user receives the Microsoft 365 license through group-based licensing - The source group is a Microsoft Entra dynamic security group - The license and service plan settings are intended to be controlled at the group-based license assignment level We understand that when a license is inherited from a group-based license assignment, the apps/services for that inherited license should not normally be changed directly at the individual user level. The service plan configuration should be managed at the group/license assignment level. However, the current UI behaviour is confusing. Observed behaviour: 1. Open a user in the Microsoft 365 admin center. 2. Go to the user’s “Licenses and apps” screen. 3. The user has a Microsoft 365 license inherited from a group-based license assignment. 4. Some app/service checkboxes appear to be enabled and editable. 5. An administrator can actually clear/uncheck those checkboxes. 6. However, when clicking OK/Save, the operation fails with an error. In other words, the UI allows an administrator to make a change that cannot actually be committed. The reason this looks like a regression is that the previous UI behaviour was different. Previously, when a user’s Microsoft 365 license was inherited from a group-based license assignment, the relevant app/service checkboxes on the user-level “Licenses and apps” screen were greyed out or effectively read-only. Administrators could visually understand that those service plan settings could not be changed directly at the individual user level. Recently, those same checkboxes appear to be active and editable. The administrator can uncheck them, but the change fails only after clicking OK/Save. From an administrator UX perspective, this is confusing because the UI appears to allow an unsupported operation and only rejects it at save time. Expected behaviour: If service plan settings for an inherited group-based license cannot be changed at the individual user level, we would expect one of the following behaviours: - The checkboxes should remain disabled/read-only from the beginning. - The UI should clearly state that these apps/services are inherited from a group-based license assignment. - The Save/OK button should be disabled for changes that cannot be applied. - The UI should provide a link or guidance to manage the setting at the group-based license assignment level. Questions: 1. Has anyone else observed this recent change in behaviour? 2. Was this UI change intentional? 3. Is this a known issue or known UX regression in the Microsoft 365 admin center? 4. Is there any scenario where these checkboxes are intentionally editable for a user who receives the license only through group-based licensing? 5. Does this behaviour differ depending on whether the source group is an assigned security group or a dynamic security group? 6. Is there any recommended administrator workflow when troubleshooting service plan settings for a user whose license is inherited from a group-based license assignment? To clarify, this is not a question about how group-based licensing works. The concern is specifically about the UI behaviour where inherited license service plan checkboxes were previously greyed out, but now appear editable even though the change fails on save. If this is not intentional, it would be helpful if the Microsoft 365 admin center could restore the previous read-only/greyed-out behaviour, or clearly explain in the UI why the change cannot be saved. Thank you.Planner Synchronization of Microsoft 365 Message Center Notifications Improves
Microsoft published the very good news that the Planner synchronization with the Microsoft 365 message center will support HTML formatted text when it creates or updates tasks. This might seem like a small change, but if you use Planner to track the progress of anything, like we do for the Office 365 for IT Pros eBook, it’s sometimes the little changes that make the biggest impact. https://office365itpros.com/2026/05/15/planner-synchronization/
Best way to enforce manager check-ins across the org using M365 tools?
Our CHRO wants every manager to have at least bi-weekly check-ins with directs and wants visibility into whether its actually happening. Right now theres zero tracking. Some managers do it, some dont, and leadership has no idea. I looked at Viva Insights but it only shows meeting frequency, not whether there was an actual structured conversation. Is there a way to get reporting on this through admin center or do we need something separate?
Lost Access to Microsoft Authenticator
Hello team, I reimage my phone, unfortunately lost Microsoft Authenticator, I dont have cloud backup enabled in my Authenticator, I try login account in Microsoft Authenticator, but still ask me Authenticator verification, and no other option (like email, SMS, or backup codes) shown, I'm register Microsoft 365 developer account, i'm only admin, could you please let me know the exact steps I need to take or if there is a support escalation route I should follow, thanks for advance.
Can't access Microsoft Authenticator for business accounts
Hello. I am the tech support for a small church, where I am the admin for our MS 365 accounts, which are set up as "business accounts". I have been using Microsoft Authenticator for MFA for years. Recently I switched to a new phone and installed Microsoft Authenticator. All of my personal Authenticator accounts transferred over just fine, but all of the church's business accounts say "Scan the QR Code provided by your organization to finish recovering this account". The thing is, I am the "organization" and I don't know how to generate any QR code to recover the accounts. It was suggested that I could do something about this by logging into my Microsoft 365 administrator account, but when I try to log into my admin account, the only MFA option is "enter the code from Microsoft Authenticator". It's not offering a text or alternate email, only Microsoft Authenticator, which is what I'm locked out of. So I'm stuck in a loop. I opened a ticket with Microsoft Support nine days ago. I have received one phone call since then. The support person insisted that they needed to talk to the account's "alternate administrator", which I set up as my pastor, who is pretty computer savvy but not a deep IT person. They tried to call him one time, but he was not available to answer right then. There has been no communication since then. I'm hoping someone in this group can help me figure this out.
MC1269241 - Can't turn off antropic for agentmode
Hi, I’m trying to figure out how to turn off the new feature where Anthropic is enabled by default for everyone in the EU for agent mode in excel and powerpoint, as described in the Message Center news in the title. It is not possible to press Save when you have unchecked the setting unless you also consent to the terms of use, it is greyed out. Since we want the feature turned off, we do not want to agree to any terms of use. Has anyone found a solution? This seems to be misconfigured.Entra and Microsoft 365 Could Improve License Reporting
License insights is a new feature in the Entra admin center. The Microsoft 365 admin center also shows some license insights in a dashboard card. The two views don’t line up. This isn’t very surprising because different teams generated the information, but it would sure be nice if Microsoft delivered comprehensive license reporting for Microsoft 365 tenants, including the Entra premium licenses. https://office365itpros.com/2026/04/24/license-insights/
Former short-term employee added as Billing Admin
Hi everyone, I’m hoping to get some insight into how this could have occurred and what we should review to prevent it from happening again. We are a small organization, and we recently discovered that a former employee (who only worked with us for about two weeks) was listed as a Billing Administrator in our Microsoft 365 tenant. This person is no longer with the company. Their Microsoft account has already been deleted. We are a small team with very limited admin roles assigned. We do not recall intentionally granting them billing-level permissions. We are trying to understand: How could a short-term user have been assigned the Billing Administrator role? Could this have been done automatically through another role assignment (e.g., Global Admin inheritance)? Is it possible this occurred through a CSP/partner relationship? Are there logs we should specifically review beyond standard audit logs? What are best practices to prevent this from happening again in a small tenant? We are currently reviewing: Admin role assignments Audit logs Partner relationships MFA enforcement for all admins If anyone has seen something similar or can suggest specific logs, settings, or controls we should review, I would really appreciate the guidance. Thanks in advance for your help.Transfer MS Office 365 Business ownership from MSP to own MS Business account
Hello Everybody I need to transfer my clients MS Office 365 Business from current MSP to their own MS Business account. Current MSP very bad service. So, at the end they want to manage their Emails\Licenses on MS Admin Center. What are the steps on doing this?
