why a owner of a Azure AD dynamic group cant modify the dynamic build rule

Alexander 266 Reputation points
2022-08-26T08:49:45.693+00:00

Hello Everybody. Why a owner of a Azure AD dynamic group cant modify the dynamic build rule?
Why you need to be one of those roles, makes no sense to me?

https://learn.microsoft.com/en-us/azure/active-directory/enterprise-users/groups-create-rule#to-update-an-existing-rule

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,472 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. JimmySalian-2011 41,916 Reputation points
    2022-08-26T09:53:22.787+00:00

    Hi,

    By Default the group creator is the owner of the Group however the permissions is only for managing the groups properties and it does not include updating the dynamicrules.

    The group permissions required for updating the rules is listed here - custom-group-permissions

    235183-image.png

    ==
    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.