In the left navigation pane in Lighthouse, select Home. If you encounter any problems during GDAP setup, see Troubleshoot error messages and problems in Microsoft 365 Lighthouse: GDAP setup and management for guidance. Once completed, you can come back and edit any section as needed. When you set up GDAP for the first time, you must complete the following sections in order. To enable Just-in-Time (JIT) roles, Microsoft Entra IDE Governance or a Microsoft Entra ID P2 license is required. A Microsoft Entra ID P1 license is required to add users to these groups. Lighthouse GDAP templates use role-assignable security groups. GDAP roles are scoped to Microsoft Entra built-in roles, and when you set up GDAP, you see recommendations for a set of roles needed for different job functions. Then, you assign customer tenants to GDAP templates. Therefore, creating GDAP relationships with your customers may be the first step in managing your customer tenants in Lighthouse.ĭuring the GDAP setup process, you create GDAP templates by configuring what support roles and security groups are needed for your organization. Lighthouse lets you quickly transition your organization to GDAP and begin the journey to least-privilege for your delegated access to customers.ĭelegated access via delegated admin privileges (DAP) or GDAP is a prerequisite for customer tenants to be fully onboarded to Lighthouse. By setting up your organization with GDAP for the customer tenants you manage, users in your organization have the permissions necessary to do their work while keeping customer tenants secure. You can now set up all your customers with granular delegated admin privileges (GDAP) through Microsoft 365 Lighthouse, regardless of their licenses or size.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |