Entra ID Admin Center

Note: The Microsoft Entra admin center (formerly Azure Active Directory admin center) is the primary portal for managing your Entra ID (Azure AD) tenant. This documentation provides an overview and guidance on its usage.

Introduction

The Microsoft Entra admin center is a comprehensive web-based interface that allows administrators to manage identities, access, and security for their organization's cloud and on-premises resources. It provides a centralized location for configuring and monitoring Entra ID services, ensuring secure access to applications and data.

Accessing the Center

To access the Entra ID Admin Center, navigate to https://entra.microsoft.com and sign in with an administrator account for your Entra ID tenant.

Key Features

User Management

Manage user accounts, including creation, deletion, and updating user profiles. Assign licenses, manage MFA settings, and reset passwords for users.

Group Management

Create and manage security and Microsoft 365 groups. Assign users to groups to simplify permission management and resource access.

Application Management

Register and configure enterprise applications for single sign-on (SSO) and user provisioning. Manage access policies and permissions for these applications.

Roles and Permissions

Assign administrative roles to users and groups to delegate specific management responsibilities. Entra ID offers a rich set of built-in roles and allows for custom role creation.

Monitoring and Reporting

Monitor sign-in activity, audit logs, and security events. Generate reports to gain insights into user activity, application usage, and security posture.

The Entra ID Admin Center features a modern, intuitive interface. The left-hand navigation pane provides access to different management areas, while the main content area displays details and configuration options. Key sections include:

Overview: A dashboard providing a summary of your tenant's health and key metrics.
Identity: Manage users, groups, roles, and external identities.
Applications: Manage enterprise applications, app registrations, and SSO.
Security: Configure identity protection, conditional access, and authentication methods.
Monitoring & Health: Access sign-in logs, audit logs, and health status.
Endpoints: Access various endpoint services.

Common Tasks

Creating a New User

To create a new user:

Navigate to Identity > Users > All users.
Click New user > Create new user.
Fill in the required user details, including identity, password, and group memberships.
Click Create.

Assigning a License

To assign a license to a user:

Navigate to Identity > Users > All users.
Select the user you want to assign a license to.
Under Licenses, click Assignments.
Select the desired license and click Save.

Creating a Group

To create a new group:

Navigate to Identity > Groups > All groups.
Click New group.
Choose the group type (e.g., Security, Microsoft 365).
Fill in the group details, including name, description, and members.
Click Create.

Best Practices

To ensure optimal security and management of your Entra ID tenant:

Implement Least Privilege: Assign only the necessary permissions to users and administrators.
Enable Multi-Factor Authentication (MFA): Enforce MFA for all users, especially administrators.
Regularly Review Audit Logs: Monitor sign-in and audit logs for suspicious activity.
Use Groups for Permissions: Manage access by assigning permissions to groups rather than individual users.
Keep Software Up-to-Date: Ensure your Entra ID Connect, if used, is running the latest version.

For more detailed information on specific features and configurations, please refer to the relevant sections of the MSDN documentation.