Menu
How do we add a second global admin for Azure AD B2C? Do we add them as guest account and assign that guest GA? When adding a normal user, it says we can’t add a dot.state.fl.us email. Should we authorize it, or will that screw up our primary tenant? (Azure AD).
807
Under Manage, select Users. Select the user you want to change the roles for. Then select Assigned roles. Select Add assignments, select the role to assign (for example, Application administrator), and then choose Add.
Assign the Global admin role to users who need global access to most management features and data across Microsoft online services. Giving too many users global access is a security risk and we recommend that you have between 2 and 4 Global admins.
The Global Administrator role is not required after the initial setup and the only required account will be the Directory Synchronization Accounts role account. That does not necessarily mean that you will want to just remove the account with the Global Administrator role.
You can either create a local (or member) user in your Azure AD B2C directory and/or invite an external (or guest) user from your Azure AD enterprise directory to your Azure AD B2C directory.
To create a member user, select "New user" in the "Users and groups - All users" blade of your Azure AD B2C directory.
(This member user must be created with the domain name of your Azure AD B2C directory.)
To invite a guest user, select "New guest user" in this same blade.
In both cases, you can assign the member or guest user to the Global Administrator role, so that can manage your Azure AD B2C directory.
150
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
