Auditing - Ensure Non-Global Administrator Role Group Assignments Are Reviewed At Least Weekly

 








Summary

Non-global Administrator Role Group assignments should be reviewed at least every week.

Reason

Although these roles are less powerful than a global admin, they do grant special privileges that can be used illicitly. If anything unusual is seen, then, the user must be contacted in order to confirm it is a legitimate need. 

How to?

To review non-global administrator role group assignments, use the Microsoft 365 Admin center:
  1. Go to Security.
  2. Click on Audit then select Search.
  3. Set Added member to Role and Remove a user from a directory role for Activities.
  4. Now, set Start date and End date.
  5. Click Search.
  6. Review.

Monitor:

To verify non-global administrator role group assignments are being reviewed at least weekly, confirm that the necessary procedures are in place and being followed.









































Comments

Popular posts from this blog

Deployment (Part 3)

Deployment (Part 1)

Project Resourcing (Part 2)