Delegate permissions for managing MFA
To be able to delegate the permission of administering user account MFA setting like enable/disabled forcing reset of MFA code etc.
Currently the Global Admin permission is needed. It would be able very useful to delegate this to a service desk function without having to provide full admin access to the tenant.
Jacob McGuire
shared this idea
We have heard the feedback and we’ve added it to our upcoming investments. While we do not have a date for this yet, we hope to be able to provide one soon. Thank you for the continued feedback.
180 comments
-
Anonymous
commented
Is it ready, to use? I´m hopefull.
-
Stewart
commented
This is a critical security feature for our customers and the inability for our engineers to manage the requests is incredibly inhibiting.
-
Joe Yang
commented
Please let user with role of helpdesk administrator be able to manage MFA. Microsoft can set it up that any MFA change by helpdesk administrator will trigger an email to be sent to global administrator for review. GA can't handle all requests accross the world for multiple country wide corperations.
-
Anonymous
commented
Please let user with role of helpdesk administrator be able to manage MFA. Microsoft can set it up that any MFA change by helpdesk administrator will trigger an email to be sent to global administrator for review.
-
Anonymous
commented
Create a role so that a user can access the MFA settings
-
Dan Walker
commented
Please make sure Unblock is included in this permission evaluation
-
Anonymous
commented
this is 'heard' a year ago,any updates yet ?
-
BrianB
commented
Last update "In the Plans" was over a year ago?
MFA is essential & having it only via Global Admin is not acceptable.
-
anónimo
commented
We have 5,000+ users using the 365. We need this rights delegable to MFA authenticator.
-
Joey Dagami
commented
Please let user with role of helpdesk administrator be able to manage MFA. Microsoft can set it up that any mfa change by helpdesk administrator will trigger an email to be sent to global administrator for review.
-
Mark Hall
commented
We would like to kindly ask to have this feature implemented by Microsoft on Microsoft Azure AD, as this would surely help us during our day-to-day work and in turn, allow us to provide a much more efficient and valuable Service to the End-User.
-
Anonymous
commented
We have a userbase of 2K users and delegated access is extremely important to us, as Service Desk cannot be granted Admin access.
-
Scott Ingram
commented
We have 20,000+ users using authenticator. We need this rights delegable.
-
Anonymous
commented
Any update on this request yet? Really need to give HD access to MultiFactor without giving Global Admin Rights.
-
Kazim
commented
Hi
Its been 3 years now for this request , Hope it will be implemented soon, ( My suggestion is to change the sentence at least on info of Authentication Admin so that the global admins can get a clear picture regarding this whenever they assign a role to someone ) -
Anonymous
commented
Is this still not a possibility?? This is a really really bit miss right now.
-
L
commented
Please enable asap. Thanks.
-
Mina Gerguis
commented
It had been on for over 3 years since requested, and nearly a year in plans, hopefully this will be done soon, as MFA is essential & having it only via Global Admin is not acceptable.
-
Anonymous
commented
This really does need resolving please - Global Admin just isn’t appropriate for day to day admin tasks. Thanks
-
Anonymous
commented
its over an year and this feature is still not integrated!.. so sad