Preparing exam SC – 300 – Identity and Access Administrator – Configure tenant-wide setting – Study material – Part 4

Azure Active Directory - Tenant wide properties
Azure Active Directory - Tenant wide properties

Hi All,

Greetings for the day 🙂 LIFE IS BEAUTIFUL 🙂

As I am preparing for the exam SC – 300, I am keep sharing the study material 🙂

if still didn’t got a chance to went through last three related articles please have a look once. I am trying to keep as simple as possible 🙂

In this article we will proceed further and will discuss few default settings/permissions, bit about security defaults and tenant level settings

In Azure AD we have for every user there are some default permissions . These default permissions can be changed only from user settings.

The set of default permission depends on whether user is native user / member user means user within organization or guest user. Guest user means user from other directory or other tenant

Member users default permissions:

  • Can register applications
  • Manage their own profile – managing profile photo, mobile number, change the password
  • Can invite guests

Guest user default permissions:

  • Can manage own profile – change the password
  • Can retrieve some information about users, groups and apps
  • Can not enumerate list of all users, groups and other objects
  • Can invite other guests
  • Can be assigned to other roles to guest users like Global Administrator

Managing Security Defaults: How to enable security defaults and what are security defaults, I’ll explain in detail in next article

  • Requiring all users to register for Azure AD Multi-Factor Authentication.
  • Requiring administrators to perform multi-factor authentication.
  • Blocking legacy authentication protocols.
  • Requiring users to perform multi-factor authentication when necessary.
  • Protecting privileged activities like access to the Azure portal.

Tenant wide properties:

  • We will have tenant wide properties which Global Administrator have rights to update / Views like
    • Tenant display name – Editable
    • View the Country and Region associated with our Tenant
    • View the Location associated with our Tenant
    • View / Edit Notification Language
    • View the Tenant ID
    • View / Change the Technical contact, add your privacy info, Global privacy contact, and Privacy statement URL

Navigate to Tenant level properties :

Azure Active Directory admin center
fig : Azure Active Directory admin center
  • From left side pane / blade click on “Azure Active Directory
  • We will be navigating to “Azure Active Directory overview page
Azure Active Directory admin center >> overview page
fig : Azure Active Directory admin center >> overview page
  • As shown in above fig or from Azure Active Directory overview page, from left side pane please click on “Properties
  • We will be navigating to “Azure Active Directory” properties page as shown in below fig
Azure Active Directory admin center - Tenant wide properties
fig : Azure Active Directory admin center – Tenant wide properties
  • On Azure Active Directory properties page we have properties – some of them are editable or some can be viewed only as shown in above fig

I’ll stop here for this article 🙂

Next Article : In next article we will discuss about Security Defaults

Thanks for reading 🙂 If its worth at least reading once, kindly please like and share 🙂 SHARING IS CARING 🙂

Share In Teams:

Enjoy the beautiful life 🙂 Have a FUN 🙂 HAVE A SAFE LIFE 🙂 TAKE CARE 🙂

Prasham Sabadra

LIFE IS VERY BEAUTIFUL :) ENJOY THE WHOLE JOURNEY :) Founder of Knowledge Junction and, Author, Learner, Passionate Techie, avid reader. Certified Professional Workshop Facilitator / Public Speaker. Scrum Foundation Professional certificated. Motivational, Behavioral , Technical speaker. Speaks in various events including SharePoint Saturdays, Boot camps, Collages / Schools, local chapter. Can reach me for Microsoft 365, Azure, DevOps, SharePoint, Teams, Power Platform, JavaScript.

You may also like...

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: