Intune Built-in RBAC Roles

Intune role-based access control (RBAC) offers a collection of built-in roles intended to help with least-privilege management of Intune. Rather than having administrators always sign in with overly privileged administrator roles, Intune RBAC offers roles that include just the permissions necessary for each Intune management task. The AAD Global Administrator and Intune Service Admin roles are not shown here because they are fully privileged roles over Intune and should be used only when absolutely necessary.

Become a DOM member or log in to read the full report