Restrict admins access to users under certain domains in Azure multi-tenant

AA-ron 20 Reputation points

Hello all. I administer a multi-tenant Azure AD. I would like to restrict certain admins to certain domains, at least to their own domain. In legacy AD I would move users to an OU and assign delegation from there. Is there an equivalent solution in Azure?

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,365 questions
{count} votes

Accepted answer
  1. Vasil Michev 94,521 Reputation points MVP

    There are no domain-based restrictions in Azure AD. What you can use are Administrative units, think of them as the analog of OUs:

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful