Allow adding Entra users to custom roles

What is a one sentence summary of your feature request?

Allow the “Add to Azure AD Role” action to include custom roles

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

This feels crazy to have to request, but apparently when using an activity with the “Add to Azure AD Role” action, you cannot use a custom role in the field labeled “Azure AD Role (Allows custom entries)”. This was confirmed by support to not allow custom roles, and I was instructed to submit a feature request for this. The lack of this feature means you cannot add a user to a custom set of permissions within Entra and are stuck with the built-in roles. The ability to add custom roles here would allow for finer control over user permissions in the cloud and improve security.

How do you currently solve the challenges you have by not having this feature?

It is not currently possible to work around this feature using the Netwrix product. We have to use Microsoft PIM instead which breaks our workflow for technicians.

Hi David,

Thank you for the submission and sorry for the delay.

We have plans to rework how we handle EntraID entirely as our current setup is very clunky. I am looking at dong that at the end of this year or early next year.

Best Regards, Billy VanCannon

Is there anyway I can encourage that to be more prioritized? I only ask because since we got the product, the Entra capabilities are just about completely broken and support/dev has been working on our issues for about a year now with no progress. I’m sure others out there must be facing similar issues.