Skip to main content

Groups, Memberships, Access Management

Group Types

Security Groups

  • Used to manage user and computer access to shared resources
  • Can consist of:
    • Users
    • Devices
    • Service Principles
    • Nested Groups
  • SGs are owned by Users and/or Service Principals

Microsoft 365 Group

  • Provides collaboration opportunities between group members, providing access to shared services:
    • Mailboxes
    • Calendars
    • Files
    • SharePoint sites
  • Also allows for users outside of the organization to be granted access. Members of an MS 365 Group can only be Users. 
  • MS365 groups are owned by Users and/or Service Principals

 

Membership Types

Assigned

  • Allows you to add specific users as members of a group and have unique permissions

Dynamic User

  • Allows use of dynamic membership rules to automatically add or remove members
  • If a User's attributes change, the system will determine if the new attributes meet the Dynamic Group rules for the directory 

Dynamic Device

  • Allows use of dynamic group rules to automatically add or remove devices
  • If a device's attributes change, the system looks at the dynamic group rules and determines if the device meets requirements for the directory

 

Access Management in Entra ID