Can an Azure Active Directory (AD) user be assigned only one role?

Disable ads (and more) with a membership for a one time $4.99 payment

Study for the Microsoft SC-900 Exam. Master key concepts with targeted flashcards and multiple-choice questions, featuring hints and explanations. Get prepared and confident for success!

Azure Active Directory (AD) allows users to be assigned multiple roles, which is essential for managing permissions and access appropriately within an organization. This feature enables organizations to grant varied levels of access depending on the user's responsibilities, ensuring that the right people have the right access to resources.

For example, a user could be assigned the roles of a “User administrator” and a “Billing administrator” simultaneously. This capability is particularly important in complex environments where roles and responsibilities often overlap, allowing for more flexible management of user access.

The structure of role assignments in Azure AD supports collaboration across various teams while maintaining security. By allowing multiple roles, Azure AD enhances governance and compliance, reducing the risk of privilege misuse and ensuring that users can efficiently fulfill their roles.

Thus, when considering the overall functionality and flexibility Azure AD provides, it's clear that a user can indeed have multiple roles instead of being confined to a single role assignment.