About

Welcome to msadminroles.com. If you spend as much time managing Microsoft 365 and Entra ID environments as I do, you will know that navigating admin roles can sometimes feel like a dark art.

I'm Daniel Bradley, a Microsoft MVP in Security, technical author at Our Cloud Network, and the creator behind community tools including msmessagecenter.com, msicons.com, and msdocstracker.com. Over the years, one of the most consistent frustrations I have run into, both in my day-to-day work as a Technical Architect and in conversations with the wider IT community, is the disconnect between Entra admin roles and Microsoft Graph API permissions.

Microsoft does not provide an easy or transparent way to link admin roles to the underlying Graph API permissions they rely on. On top of that, keeping track of exactly what changes within these built-in roles over time is a significant administrative headache.

I built msadminroles.com to bridge that gap. The site is designed to be a definitive, up-to-date directory for all Microsoft admin roles. You can view comprehensive role details, track changes and updates to roles over time, and see the exact Graph API permissions tied to each role.

Whether you are auditing your tenant's security posture, enforcing least-privilege access, or writing automation in PowerShell, this tool provides the visibility that the native admin centres currently lack.

My goal has always been to build practical, community-driven utilities that make life as an IT professional a little easier. I hope msadminroles.com becomes a useful part of your daily toolkit.