Eric Raff

My feedback

  1. 357 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Hi folks,
    Just a quick update here. We’re still actively working on support for custom roles (RBAC) across Azure AD. Stay tuned for more announcements in the next couple of months.

    You can have a look at what we’ve shipped thus far (custom roles for application registration management) here – https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/roles-custom-overview.

    Regards,
    Vince Smith
    Azure Active Directory Team

    An error occurred while saving the comment
    Eric Raff commented  · 

    Great work being done here. I am interested in creating a custom security reader role but need additional permissions added. Specifically the following 3 permissions. In short granting the Security Reader role does not allow security team to see Conditional Access policies in AAD.
    "microsoft.aad.directory/policies/conditionalAccess/basic/read",
    "microsoft.aad.directory/policies/conditionalAccess/policiesAppliedTo/read",
    "microsoft.aad.directory/policies/conditionalAccess/owners/read"

Feedback and Knowledge Base