How to add a security group as a member of another security group in Azure AD B2C tenant?
I have 2 security groups in AzureAD(B2C tenant) and I want one to be a member of another group. In the GUI, the group is not found when I try to add a new member. I tried to do this with terraform (via Microsoft Graph) and this fails as well.
Microsoft documentation suggests that this is possible.
Is there something I am missing, or does it require e.g. Premium account (nothing like that is mentioned in the docs)?
Azure AD nested groups is not supported in Azure AD B2C tenant. Azure AD B2C tenant nested groups
However you can add an existing Security group to another existing Security group in regular AzureAD tenant (also known as nested groups), creating a member group (subgroup) and a parent group.
You do not need to have AzureAD Premium account in .
You can add security group into another security group using following steps:
- Select Azure Active Directory, and then select Groups.
- On the Groups - All groups page, search for and open the group that's to become a member of another group
- Go to Group memberships page, select Group memberships, select Add, locate the group you want your group to be a member of, and then choose Select.
Here is a screenshot from my AzureAD
- ADF Out of memory exception
- Azure DevOps pipeline is throwing a "##[error]Project file(s) matching the specified pattern were not found". when publishing my app?
- Microsoft Entra ID: Receiving Old Token Version Despite Setting accessTokenAcceptedVersion to 2
- Rule Syntax for Azure user.memberof
- (unknown) Precondition failed when trying to create MS Graph Subscription
- Azure Function App Service Bus Trigger: Process 1 message at a time
- Azure HTTP Trigger - How to extract query parameter value from input binding- cosmosDB
- Python app deployment to Azure web app from pipeline not including requirement packages
- Force Azure Function using Service Bus Queues to only process one mesage at a time
- Azure Web Role with Transient Fault Handling Block exception: The path is too long after being fully qualified
- Azure Bicep - How to create diagnostic settings for NetworkInterface of private endpoint
- Is there a way to get static ip address for Azure Data Factory
- azure key vault - lag on secret changes
- How to create connection to create - queue item - HTTP Trigger - local - Azurite - Azure Queue Storage
- Getting error "404 The specified blob does not exist" when downlading blob using Uri
- How scopes are added to token in Azure Entra ID?
- Why does my Azure Cosmos DB SQL API Container Refuse Multiple Items With Same Partition Key Value?
- Postgres on Azure kubernetes volume permission error
- Azure: Subscribing to an external MQTT Broker
- azure.storage.blob._shared.authentication.AzureSigningError: Incorrect padding - Argo workflow
- Bash variable in JMESPath query expression
- Azure Devops pipeline failing due to AZ.Accounts Module update by MSFT
- Is it possible to use email name other than "DoNotReply" in Azure Email Communication Services?
- AADSTS65001: The user or administrator has not consented to use the application with ID '<application ID>
- Access Package Endpoint doesn't seem to be working
- install docker bash script doesn't work when used as Custom Data for Azure VM
- Docker image is not updating on Azure container registry via gitlab
- Terraform - How to find Azure Kubernetes AKS vnet ID for network peering
- Using Azure DataLakeServiceClient to download a file got forbidden response after few minutes success
- Verify that Bicep can return values from Azure Key vault