| Display name | Helpdesk Administrator | ||
|---|---|---|---|
| Id | 729827e3-9c14-49f7-bb1b-9608f156bbb8 | ||
| Description | Can reset passwords for non-administrators and Helpdesk Administrators. | ||
| Detailed description | Users with this role can change passwords, invalidate refresh tokens, manage service requests, and monitor service health. Invalidating a refresh token forces the user to sign in again. Helpdesk administrators can reset passwords and invalidate refresh tokens of other users who are non-administrators or assigned the following roles only: * Directory Readers * Guest Inviter * Helpdesk Administrator * Message Center Reader * Password Administrator * Reports Reader |
||
| Categories | identity | ||
| isPrivileged | True Privileged | ||
| EntraOps Tier Level | ControlPlane | ||
| #Resource Actions unique | 63 | ||
| #Resource Actions Operations unique | 63 | ||
| #Resource Actions privileged | 3 | ||
| #Resource Actions direct | 9 | ||
| Resource Actions inherited | True | ||
| #Resource Actions inherited | 54 | ||
| Resource Actions inherited from | Directory Readers (88d8e3e3-8f55-4a1e-953a-9b9898b8876b) | ||
| #Resource Actions overlap direct&inherited | 0 | ||
| Resource Actions overlap direct&inherited | |||
| #Resource Actions inherited to | 0 other Entra Id Roles | ||
| Resource Actions inherited to | n/a | ||
| #Resource Actions conditioned | 0 | ||
| #Resource Actions unconditioned | 63 | ||
| #NameSpaces | 6 | ||
| NameSpaces | microsoft.azure.serviceHealth: 1 microsoft.azure.supportTickets: 1 microsoft.directory: 58 microsoft.office365.serviceHealth: 1 microsoft.office365.supportTickets: 1 microsoft.office365.webPortal: 1 |
||
| Actions | allTasks: 4 other: 1 read: 57 update: 1 |
||
| Operations actionVerbs | GET: 57 n/a: 4 PATCH: 1 POST: 1 |
||
| Resource Actions where Consent Policy applies | 0 | ||
| Resource Actions / Consent Policy | n/a | ||
| JSON enriched |
|
||
| JSON raw (v1.0 endpoint) |
|
||
| JSON raw (beta endpoint) |
|