Is Navigating Microsoft 365 Identity a Never-Ending Scavenger Hunt?

Are you trying to get a grip on authentication versus authorization? Authentication happens in Entra, while authorization is handled at the service level. It's crucial to remember that Azure and the Power Platform manage authorization similarly to any third-party SaaS apps. Microsoft doesn't market Entra as a place for holding authorization data; that might be where some confusion comes in.

From what you've shared, it seems like maybe you’re just still getting the hang of things? Some of your posts make it look like you're searching for answers on Reddit repeatedly, which can feel like market research at times. But hey, we all struggle, especially with the quirks of Microsoft systems.

Have you checked out that new Zero Trust assessment tool from Microsoft? It might help clarify some of the roles and responsibilities across the platforms.

If you want a clearer picture of everything, consider using Microsoft Graph or PowerShell for reports. A lot of folks I know also use third-party tools like AdminDroid to cut down the hassle. There's no need to feel like you’re on a wild goose chase! I can’t even imagine managing a tenant with 10,000 users without some proper tools; that sounds exhausting.

Honestly, even if you manage to track everything down, things change so often that you’ll just find yourself back at square one in no time. I’ve created tons of documentation, shortcuts, and organized info, but within a month, it's like everything has been renamed or moved around. It's a constant battle.