Role for hardware OATH Token management
Actually, it is not possible to delegate permission to manage upload and activate hardware OATH Token in Azure to a specific role. In the least privilege approach, it will be useful not to use Global Admin role for that.
Josh B commented
It's really frustrating that these sorts of things are planned and implemented at the same time as the features. It makes Microsoft products and services feel perpetually half baked.
Jean-Michel Lemieux commented
We would like to delegate the OATH Token role to the helpdesk staffs. Do you have an ETA???