Share via

How to delegate permissions to Service desk team for managing MFA in Azure Active Directory

zohaib yousuf 1 Reputation point
2024-05-14T12:04:58.9133333+00:00

How to delegate permissions to Service desk team for managing MFA in Azure Active Directory. just MFA reset (revoke and re-register) rights. please suggest

Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
688 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,908 questions
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andy David - MVP 142.8K Reputation points MVP
    2024-05-14T13:35:17.55+00:00
  2. Akhilesh 5,635 Reputation points Microsoft Vendor
    2024-05-21T16:16:07.1+00:00

    Hi @zohaib yousuf

    Thank you for your post!

    I understand that you would like to delegate permissions to the Service desk team for managing MFA in Entra ID.

    To delegate permissions to the Service desk team, you can assign "Authentication Administrator" role in Entra ID. This role allows the team to manage MFA for all users in the directory.
    The following table compares the capabilities of authentication-related roles.

    User's image

    For more readings: Authentication Administrator
    Privileged roles and permissions

    Also, you can refer the third-party document which is similar to your ask
    How to delegate permissions for managing MFA in Azure Active Directory

    Hope this helps. Do let us know if you any further queries.

    Thanks,

    Akhilesh.

    If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.