Azure policy doesn’t works on tenant scope and there were no permissions in azure RBAC too for restricting access to create an AAD.
Azure policy doesn’t works on tenant scope and there were no permissions in azure RBAC too for restricting access to create an AAD.
2
Answers
As it’s free to create an azure tenant, it’s not something you can restrict access to.
creating an azure tenant has zero affect on a corporations tenant(s).
You can assign RBAC to something you don’t own.
What is the reason you’d like to prevent a user from creating their own tenant?
You can restrict users from creating additional tenants using this new handy preview toggle switch setting in Azure AD under
User Settings>Tenant creation>Restrict non-admin users from creating tenants (preview):
setting
This method ensures that only Global Admins can create additional tenants