From Azure Portal
- From Azure Home select the Portal Menu.
- Select
Microsoft Entra ID.
- Under
Manage, select Roles and administrators.
- Under
Administrative Roles, select Global Administrator.
If more than 4 users are assigned
- Remove Global Administrator role for users which do not or no longer require the role.
- Assign Global Administrator role via PIM which can be activated when required.
- Assign more granular roles to users to conduct their duties.
If only one user is assigned
- Provide the Global Administrator role to a trusted user or create a break glass admin account.