Posted in Endpoint Administrator, Microsoft 365 Administrator, MS 365 Enterprise Administrator, MS 365 Modern Desktop Administrator, MS 365 Security Administrator, MS Teams Administrator

Microsoft 365 Roles

   October 10, 2023

Microsoft 365 roles, including individual service roles:

Built-In Roles:

  1. Global Administrator:
    • Description: Has access to all administrative features, settings, and resources across Microsoft 365. This role can perform tasks such as user management, license assignment, and security configuration.
  2. User Account Administrator:
    • Description: Manages user accounts, password resets, and user permissions. They can create and delete user accounts, reset passwords, and assign licenses.
  3. Exchange Administrator:
    • Description: Manages email-related tasks within Exchange Online, such as creating and managing mailboxes, distribution groups, and email policies.
  4. SharePoint Administrator:
    • Description: Manages SharePoint settings, sites, libraries, and permissions. This role is focused on SharePoint Online administration.
  5. Security Administrator:
    • Description: Focuses on security tasks, such as managing security settings, compliance, and threat protection.
  6. Compliance Administrator:
    • Description: Manages data governance and compliance settings, including data retention, eDiscovery, and data loss prevention.

Individual Service Roles:

  1. Teams Service Administrator:
    • Description: Manages Microsoft Teams settings, policies, and permissions. This role is specific to Microsoft Teams administration.
  2. Skype for Business Administrator:
    • Description: Manages Skype for Business settings, user accounts, and conferencing.
  3. Power BI Administrator:
    • Description: Manages Power BI settings and configurations. This role focuses on Power BI administration.
  4. Power Platform Administrator:
    • Description: Manages Power Platform settings, apps, and permissions, including Power Apps and Power Automate.
  5. Intune Administrator:
    • Description: Manages Intune settings for mobile device and application management.
  6. Dynamics 365 Administrator:
    • Description: Manages Microsoft Dynamics 365 settings, customization, and user accounts.
  7. Teams Communications Administrator:
    • Description: Manages advanced communications features in Microsoft Teams, such as telephony and meetings.
  8. Identity Administrator:
    • Description: Manages identity and access-related settings, including Azure AD Identity Protection and authentication methods.
  9. Device Administrator:
    • Description: Manages device-related settings and configurations, such as device compliance and management policies.
  10. Security Reader:
    • Description: Can view security-related settings and reports but cannot make changes.
  11. Security Operator:
    • Description: Manages security settings, incidents, and alerts but does not have full administrative control.
  12. eDiscovery Manager:
    • Description: Manages eDiscovery cases and related settings for legal and compliance purposes.
  13. Security Administrator:
    • Description: Manages security settings, compliance, and threat protection for the entire organization.
  14. Global Reader:
    • Description: Can view settings and data across Microsoft 365 but cannot make changes.

Configuration, Management, and Monitoring Steps:

The configuration, management, and monitoring steps for these roles are similar to the ones mentioned in the previous response. Depending on the role, you will assign permissions, manage users, configure policies, and monitor activities within the specific service or area of responsibility associated with the role. Regular monitoring and auditing of role assignments and activities are crucial for maintaining security and compliance.

Share: XFacebookPinterestLinkedin
Author: tonyhughes