Thank you for your feedback! Would you like the feature to be controlled by the admin or available for everyone?
20 votes2 comments · Azure Active Directory » Role-based Access Control · Flag idea as inappropriate… · Admin →
The following admins can read bitlocker keys –
Cloud Device Admin
Would it be sufficient to what you are looking for?
Cloud Device Administrator is the new role that will provide this capability . This will be generally available in the coming monthsdmnq commented
The role "Device administrator" should be granted. Our client guys are responsible for managing the devices in Intune. They can delete the device in Intune, but not in Azure AD.
Or provide RBAC for Azure AD to build customer roles like in AD.
We’re continuing to investigate options for adding this support. There are technical challenges to overcome in order to make this happen. We thank you for all your valuable comments so far, and welcome any additional feedback you have on what are the most important use cases involved with these scenarios.
4 votesdmnq commented
The classic portal has a bunch of reports with AAD Premium (licencing, activity, application ,...) which I can not find in the new portal. Risky sign-ins is a feature of Identity Protection which is only available for extra costs. Will the reports be transferred ?
The reports in the classic portal are available via REST. Is this still the same ?