Microsoft Power Platform · Tenant Administration
Dynamics 365 Administrator
Tenant-wide administration of Dynamics 365 apps and the Dataverse environments hosting them. Cross-listed from Microsoft Entra ID.
Scope: Tenant-wide Dynamics 365 administration
Permissions
- Environments - Manage Dataverse environments hosting D365 apps
- D365 apps - Administer customer engagement apps managed through the Power Platform admin center
- Service health - View Dynamics 365 service health
- Admin center - Access https://admin.powerplatform.microsoft.com
- Support - Open Dynamics 365 support requests
Common use cases
- D365 platform lead
- Solution architect for D365 deployments
Best practices
- Limit to 2-4 users; use PIM for just-in-time activation
- Pair with Power Platform Administrator for one centralised tenant admin and one D365-focused admin if the D365 footprint is large
- Ensure security groups on D365 environments include all designated D365 admins explicitly
Security considerations
- Can backup, restore, copy, and delete any environment they have access to
- Does not automatically receive Dataverse System Administrator; data access requires separate assignment or self-elevation
- Cannot view or manage environments they are not in the security group for — absence of access can mask compliance gaps
Common questions
When should I assign the Dynamics 365 Administrator role?
Assign Dynamics 365 Administrator when you need to: D365 platform lead; and Solution architect for D365 deployments. It is part of Microsoft Power Platform and should be granted as a least-privilege alternative to broader roles like Global Administrator.
What can someone with the Dynamics 365 Administrator role do?
The Dynamics 365 Administrator role grants permissions including: Environments - Manage Dataverse environments hosting D365 apps; D365 apps - Administer customer engagement apps managed through the Power Platform admin center; Service health - View Dynamics 365 service health; Admin center - Access https://admin.powerplatform.microsoft.com; and Support - Open Dynamics 365 support requests. See the Permissions section above for the full list.
What are the security risks of the Dynamics 365 Administrator role?
Key considerations when assigning Dynamics 365 Administrator: Can backup, restore, copy, and delete any environment they have access to; Does not automatically receive Dataverse System Administrator; data access requires separate assignment or self-elevation; and Cannot view or manage environments they are not in the security group for — absence of access can mask compliance gaps. Review the Security considerations section before assignment, and pair with Privileged Identity Management (PIM) for just-in-time access where possible.