Microsoft Entra ID · Identity Governance
Tenant Governance Relationship Administrator
Can initiate governance relationships with other tenants and terminate existing governance relationships in Microsoft Entra Tenant Governance.
Scope: Manage governance relationship initiation and termination between tenants
Permissions
- Initiate new governance relationships with other tenants
- Terminate existing governance relationships
- Manage governance relationship lifecycle
- Configure relationship settings and parameters
Common use cases
- Establishing governance relationships with subsidiaries
- Onboarding new tenants into governance framework
- Offboarding tenants from governance relationships
- Managing partner tenant governance connections
Best practices
- Document all governance relationship changes
- Require dual authorization for relationship initiation
- Plan relationship termination impact before executing
- Maintain inventory of all active governance relationships
Security considerations
- Initiating relationships creates cross-tenant governance links
- Termination may disrupt connected tenant governance policies
- Unauthorized relationship creation could expose governance data
- Monitor for unexpected relationship initiation attempts