Browsing: Role Based Administration

Microsoft has released a few new Administrator roles in Azure AD, one of them is the Authentication Administrator, that allows delegation of MFA reset in Azure Active Directory without building custom solutions.The Authentication Administrator roles is allowed to view, set and reset authentication method information for any non-admin user.Authentication Administrators can require users to re-register against existing non-password credential (for example, MFA or FIDO) and revoke “remember MFA on the device”, which prompts for MFA on the next sign-in.More information: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles#authentication-administrator/Enjoy+Ronni Pedersen

Read More

Role Based Administration is a really great feature in System Center 2012 Configuration Manager, and to make it easy for us, Microsoft has prepared 14 built-roles. But if we use the the built-in role for “Software Update Manager”, the option to create folders and move objects to these folders are not available by default. Not sure if this is by design or just a minor bug. Full Administrator: Software Update Manager: To fix this small issue we need to create a new custom role. Just right-click the built-in Software Update Manager role, and click Copy. Give the new security role…

Read More