I'm trying to figure out where I can find documentation detailing the hierarchy of Azure Entra roles. Specifically, I want to know which roles are considered children of others. I'm also on the lookout for a diagram if one exists. For instance, I'm interested in determining the hierarchy for the "Cloud Application Administrator" role and if it connects to roles like "Application Administrator" and "Global Administrator."
2 Answers
You might want to check out Merrill's mindmap for a visual representation. It seems to have a good breakdown of the roles based on the current documentation.
Keep in mind that not all roles follow a strict hierarchy; some might overlap or function as sub-roles. The best approach is to query the specific permissions associated with each role and compare them. However, I understand you’re looking for a diagram that simplifies this info. Unfortunately, such diagrams are rare, but checking official sources can help in understanding these relationships.
I get that querying is the most effective way, but I really think a dedicated infographic would make things clearer for many users, including me!