Manage permissions / Access based on AD-Groups instead of individual users
Please Make it possible to magage Admin permissions or Access to Tools based on azure ad Groups instead of individual users. This is important to create a proper user lifecycle and increase our security level.
If permissions are granted based on individual users instead of Groups, there is a danger that permissions are not being deprovisioned when a user changes his Team, especially when permissions are being managed at so many places as it is at the Moment (O365 Admin Center, Yammer, Security & Compliance Center, Compliance Manager...)
If permissions are granted for a Group, you just have to remove/add the user from that Group, so he loses/gains all the permissions connected to that Group. That would be a huge win for establishing compliance on our System.
