Configure application permissions
Monitor, investigate and remediate risky users
Implement and manage Azure AD Connect Health
Implement application registrations
Create and manage break-glass accounts
Implement and manage MFA registration policy
Implement and manage Federation, excluding manual AD FS deployments
Analyze PIM audit history and reports
Plan for application registrations
Implement and manage sign-in risk policy
Manage PIM requests and approval process
Implement and manage seamless Single Sign-On (SSO)
Create and manage application collections
Implement and manage a user risk policy
Provision and manage users, groups, and roles on Enterprise applications
Create a conditional access policy from a template