Thanks for the feedback! We will look into this and share an update when we have more information.
An error occurred while saving the commentRyan Steeno commented
This is absolutely critical to have. In the event that an client_id/secret is used outside of the organization customer need to know. This will also help in the lifecycle management of application registered to AAD; with out this information we have no idea if applications are still used.
440 votes63 comments · Azure Active Directory » Role-based Access Control · Flag idea as inappropriate… · Admin →
We are working on it. There is an elevation of privilege concern associated with this feature. If a group is assigned a role, any IT admin who can manage group membership can manage that group’s membership and indirectly manage who gets the role. So, we have to ensure that the feature is secure.
We are taking a staged approach to execute this feature –
Stage 1: Supporting cloud groups to be assigned to roles
Stage 2: Supporting on-prem groups to be assigned to roles
Abhijeet Kumar Sinha
Azure Active Directory Team
We are looking into this… is Visio the end goal here or just something that will help visualize the contents of the template/resource group?