The WorkloadManagement management role enables administrators to manage workload management policies. Administrators can configure resource health definitions, workload classifications, and enable or disable workload management. Changes should only be made under the direction of Microsoft Customer Service and Support.
Default management role assignments
This role has role assignments to one or more role assignees. The following table indicates whether the role assignment is regular or delegating, and also indicates the management scopes applied to each assignment. The following list describes each column:
Regular assignment: Regular role assignments enable the role assignee to access the permissions provided by the management role entries on this role.
Delegating assignment: Delegating role assignments give the role assignee the ability to assign this role to role groups, users, or USGs.
Recipient read scope: The recipient read scope determines what recipient objects the role assignee is allowed to read from Active Directory.
Recipient write scope: The recipient write scope determines what recipient objects the role assignee is allowed to modify in Active Directory.
Configuration read scope: The configuration read scope determines what configuration and server objects the role assignee is allowed to read from Active Directory.
Configuration write scope: The configuration write scope determines what organizational and server objects the role assignee is allowed to modify in Active Directory.
This module examines the use of roles and role groups in the Microsoft 365 permission model, including role management, best practices when configuring admin roles, delegating roles, and elevating privileges.
If you’re an administrator who deploys and manages Microsoft 365 and performs Microsoft 365 tenant-level implementation and administration of cloud and hybrid environments, this certification is designed for you.