Introduction
In this assignment, I performed user and role management tasks in Azure Entra ID. The tasks included:
Creating a new user
Signing in with the new user account
Assigning Global Administrator privileges
Creating another user using the promoted account
Revoking administrative privileges
This practical helped me understand identity and access management in Microsoft Azure.
Requirements
Before starting, ensure you have:
An active Microsoft Azure account
Access to Azure Portal
Permission to manage users and roles
Azure Portal:
Microsoft Azure Portal
Step 1: Sign in to Azure Portal
Open the Azure Portal.
Sign in with your administrator account.
(https://dev-to-uploads.s3.amazonaws.com/uploads/articles/i15gzk5ay2rhjogxihlj.png)
Azure Portal dashboard after login
Step 2: Open Azure Entra ID
In the search bar, type Entra ID
Click on Microsoft Entra ID
Azure Entra ID homepage/dashboard
Step 3: Create a New User
Navigate to:
Users → All Users
Click + New User
Select Create new user
Fill in:
Username
Name
Password settings
Click Review + Create
Click Create
New user creation page
Successfully created user
Explanation
This step creates a new identity within Azure Entra ID that can access Azure resources depending on assigned permissions.
Step 4: Sign In with the Newly Created User
Open an incognito/private browser
Go to Azure Portal
Sign in using:
Newly created username
Temporary password
Change the password if prompted
Login page with new account
Successful login dashboard
Explanation
This confirms the user account was successfully created and can authenticate into Azure.
Step 5: Assign Global Administrator Role
Return to the main administrator account
Go to:
Entra ID → Users
Select the newly created user
Navigate to:
Assigned Roles
Click:
Add assignments
Search for:
Global Administrator
Select it and assign the role
Role assignment page
Global Administrator role selected
Confirmation of assigned role
Explanation
The Global Administrator role provides full administrative access to Azure Entra ID resources and settings.
Step 6: Sign In Using the Promoted Account
Open another incognito/private browser
Sign in using the promoted account
Successful login as Global Administrator
Step 7: Create Another User with the Promoted Account
Using the promoted account:
Go to Entra ID → Users
Click:
New User
Fill in the required information
Create the second user
Second user creation form
Successful creation message
Explanation
This demonstrates that the newly promoted Global Administrator account has sufficient privileges to manage users.
Step 8: Revoke Global Administrator Access
Return to:
Entra ID → Users
Select the first user
Open:
Assigned Roles
Remove:
Global Administrator role
Assigned roles page before removal
Confirmation after removing role
Explanation
Revoking privileged access is an important security practice that follows the principle of least privilege.
Conclusion
Through this assignment, I learned how to:
Create users in Azure Entra ID
Manage administrative privileges
Assign and revoke roles
Test user authentication and access management
This exercise improved my practical understanding of identity and access control in Azure.
Top comments (0)