Please Make it possible to magage Admin permissions or Access to Tools based on azure ad Groups instead of individual users. This is important to create a proper user lifecycle and increase our security level.

If permissions are granted based on individual users instead of Groups, there is a danger that permissions are not being deprovisioned when a user changes his Team, especially when permissions are being managed at so many places as it is at the Moment (O365 Admin Center, Yammer, Security & Compliance Center, Compliance Manager...)

If permissions are granted for a Group, you just have to remove/add the user from that Group, so he loses/gains all the permissions connected to that Group. That would be a huge win for establishing compliance on our System.