Role Wizard

Recommended Roles:

As CIPP is an application that touches many parts of M365 selecting the roles might be difficult. The following roles are recommended for CIPP, but you may experiment with less permissive groups at your own risk.

• Application Administrator

• User Administrator

• Intune Administrator

• Exchange Administrator

• Security Administrator

• Cloud App Security Administrator

• Cloud Device Administrator

• Teams Administrator

• Sharepoint Administrator

• Authentication Policy Administrator

• Privileged Role Administrator

• Privileged Authentication Administrator (Only required if you want to be able to delete global admins within tenants from CIPP)

Feature Requests / Ideas

Please raise any feature requests on GitHub.