Microsoft 365 Identity and Services (legacy) — Question 46

Your company's Microsoft Azure Active Directory (Azure AD) tenant includes four users. Two of the users are configured with the Global administrator, Password administrator roles respectively. A third user has both the Security administrator and the Guest inviter roles configured. The fourth user has no roles configured.
Which of the following is the user that has the necessary permissions to create guest users? (Choose all that apply.)

Answer options

• A. The user with the Global administrator role.
• B. The user with the Password administrator role.
• C. The user with the Security administrator and Guest inviter roles.
• D. The user with no roles.

Correct answer: A

Explanation

The user with the Global administrator role has the highest level of permissions in Azure AD, allowing them to create guest users. The Password administrator role does not provide this capability, nor do the Security administrator and Guest inviter roles, as the latter roles focus on security management and inviting guests rather than creating them. The user with no roles obviously lacks the permissions to perform any actions.