| title | description | author | manager | ms.service | ms.subservice | ms.topic | ms.date | ms.author | ms.custom |
|---|---|---|---|---|---|---|---|---|---|
include file |
include file |
rolyon |
femila |
entra-id |
role-based-access-control |
include |
06/25/2024 |
rolyon |
include file |
The following table compares the capabilities of authentication-related roles.
| Role | Manage user's auth methods | Manage per-user MFA | Manage MFA settings | Manage auth method policy | Manage password protection policy | Update sensitive properties | Delete and restore users |
|---|---|---|---|---|---|---|---|
| Authentication Administrator | Yes for some users | No | No | No | No | Yes for some users | Yes for some users |
| Privileged Authentication Administrator | Yes for all users | No | No | No | No | Yes for all users | Yes for all users |
| Authentication Policy Administrator | No | Yes | Yes | Yes | Yes | No | No |
| User Administrator | No | No | No | No | No | Yes for some users | Yes for some users |