Microsoft Entra ID · Identity Governance
Attribute Assignment Administrator
Assign custom security attribute keys and values to supported Microsoft Entra objects like users, service principals, and devices.
Scope: Assignment of custom security attribute values to Entra objects
Permissions
- Assign custom security attributes to users
- Assign attributes to service principals
- Assign attributes to devices
- Update attribute values
- Remove attribute assignments
Common use cases
- Tagging users with security classifications
- Assigning project attributes
- Setting compliance attributes
- Device classification tagging
- Application sensitivity labeling
Best practices
- Follow defined attribute standards
- Validate attribute values
- Document assignment decisions
- Coordinate with definition admins
- Audit attribute changes
Security considerations
- Attribute changes can affect access
- Bulk assignment needs careful review
- Audit all attribute modifications
- Consider automation for consistency