【 Office365 アップデート 】特権ロール管理者の権限強化(機能追加)

Office365 に関する Major Change Update 情報(2019/4/17付)をご案内いたします。


具体的には、グローバル管理者への依存軽減を目的として、『委任』『アプリ許可(MS/AAD Graphへの許可を含む)の承諾/取消』『AUの作成/更新/削除』『会員管理』といった辺りの機能が追加されています。なお、本変更は、5月から6月末にかけて実施される予定とのことです。


※ Nortification の解釈に誤りがございましたら申し訳ございません。


We are making some changes to the Information Protection Administrator and Privileged Role Administrator roles.

This enhancement is related to Microsoft 365 Roadmap IDs 50422 and 50424.

[How does this impact me?]

Information Protection Administrator: We are updating the name of this role to “Azure Information Protection Administrator” in the Azure portal and Microsoft 365 admin center.
Privileged Role Administrator: A Privileged Role Administrator can manage only role assignments today. To reduce dependency on the Global administrator we are enabling the additional abilities:
ability to consent/revoke any delegated or app permissions (incl. permissions to MS/AAD Graph)
ability to create, update, delete AUs, incl. membership management

We will begin rolling out these changes in May and will be completed in June.

[What should I do to prepare for this change?]

There is nothing you need to do to prepare for this change. We would suggest updating your training and process documentation as appropriate.