From Azure Portal
- In the Azure portal, open the portal menu.
- Select
Microsoft Entra ID.
- Under
Manage, select Roles and administrators.
- Under
Administrative Roles, select Global Administrator.
If more than 4 users are assigned
- Remove the Global Administrator role from users who do not or no longer require the role.
- Assign Global Administrator role via PIM which can be activated when required.
- Assign more granular roles to users to conduct their duties.
If only one user is assigned
- Provide the Global Administrator role to a trusted user or create a break-glass admin account.