Skip to main content

Groups, Memberships, Access Management

Group Types

Security Groups

    Used to manage user and computer access to shared resources Can consist of:
      Users Devices Service Principles Nested Groups SGs are owned by Users and/or Service Principals

      Microsoft 365 Group

        Provides collaboration opportunities between group members, providing access to shared services:
          Mailboxes Calendars Files SharePoint sites
          Also allows for users outside of the organization to be granted access. Members of an MS 365 Group can only be Users.  MS365 groups are owned by Users and/or Service Principals

           

          Membership Types

          Assigned

            Allows you to add specific users as members of a group and have unique permissions

            Dynamic User

              Allows use of dynamic membership rules to automatically add or remove members If a User's attributes change, the system will determine if the new attributes meet the Dynamic Group rules for the directory 

              Dynamic Device

                Allows use of dynamic group rules to automatically add or remove devices If a device's attributes change, the system looks at the dynamic group rules and determines if the device meets requirements for the directory

                 

                Access Management in Entra ID

                 

                 

                Back to top