I'm working on creating access packages for Entra ID and RBAC roles, and I'm curious if anyone has successfully exceeded the limit of 500 role assignable groups. It looks like this might be a strict limit set for the tenant. Has anyone reached out to Microsoft to see if they can raise this limit?
2 Answers
Before diving into exceeding the limit, can you explain what you're trying to achieve with 500 role assignable groups? That number seems quite high and could complicate governance for privileged groups. Maybe there's a deeper issue we can help you address instead.
Absolutely, we need to consolidate several tenants into one while keeping duties separate and ensuring admin isolation. Managing Role Management Access Units (RMAUs) is tricky with Identity Governance Administration (IGA), so we're counting on role assignable groups, and it looks like we might hit that 500 mark with all the roles and subscriptions we're dealing with. We want to reach out to Microsoft soon about increasing that limit.
Related Questions
How to Build a Custom GPT Journalist That Posts Directly to WordPress
Cloudflare Origin SSL Certificate Setup Guide
How To Effectively Monetize A Site With Ads