在 Azure Active Directory 中添加或删除组所有者Add or remove group owners in Azure Active Directory

Azure Active Directory (Azure AD) 组由组所有者拥有和管理。Azure Active Directory (Azure AD) groups are owned and managed by group owners. 组所有者可以是用户或服务主体,并且能够管理组(包括成员身份)。Group owners can be users or service principals, and are able to manage the group including membership. 只有现有的组所有者或组管理管理员才能分配组所有者。Only existing group owners or group-managing administrators can assign group onwers. 组所有者并非必须是组的成员。Group owners aren't required to be members of the group.

当组没有所有者时,组管理管理员仍然能够管理组。When a group has no owner, group-managing administrators are still able to manage the group.

向组添加所有者Add an owner to a group

下面是使用 Azure AD 门户将用户作为所有者添加到组的说明。Below are instructions for adding a user as an owner to a group using the Azure AD portal. 若要将服务主体添加为组的所有者,请按照说明使用 PowerShell 执行此操作。To add a service principal as an owner of a group, follow the instructions to do so using PowerShell.

添加组所有者To add a group owner

  1. 使用目录的全局管理员帐户登录到 Azure 门户Sign in to the Azure portal using a Global administrator account for the directory.

  2. 依次选择“Azure Active Directory”、“组”以及要添加所有者的组(例如此示例为“MDM 策略 - 西部”) 。Select Azure Active Directory, select Groups, and then select the group for which you want to add an owner (for this example, MDM policy - West).

  3. 在“MDM 策略 - 西部概述”页面上选择“所有者”。 On the MDM policy - West Overview page, select Owners.

    “MDM 策略 - 西部概述”页,其中突出显示了“所有者”选项

  4. 在“MDM 策略 - 西部 - 所有者” 页面上,选择“添加所有者” ,搜索并选择将成为新的组所有者的用户,然后选择“选择”。 On the MDM policy - West - Owners page, select Add owners, and then search for and select the user that will be the new group owner, and then choose Select.

    “MDM 策略 - 西部 - 所有者”页面,其中突出显示了“添加所有者”选项

    选择新的所有者后,可以刷新“所有者” 页面,并且会看到该名称已添加到所有者列表中。After you select the new owner, you can refresh the Owners page and see the name added to the list of owners.

删除组所有者Remove an owner from a group

使用 Azure AD 从组中删除所有者Remove an owner from a group using Azure AD.

删除所有者To remove an owner

  1. 使用目录的全局管理员帐户登录到 Azure 门户Sign in to the Azure portal using a Global administrator account for the directory.

  2. 依次选择“Azure Active Directory”、“组”以及要删除所有者的组(对于此示例为“MDM 策略 - 西部”) 。Select Azure Active Directory, select Groups, and then select the group for which you want to remove an owner (for this example, MDM policy - West).

  3. 在“MDM 策略 - 西部概述”页面上选择“所有者”。 On the MDM policy - West Overview page, select Owners.

    “MDM 策略 - 西部概述”页,其中突出显示了“所有者”选项

  4. 在“MDM 策略 - 西部 - 所有者” 页面上,选择要删除的作为组所有者的用户,从该用户的信息页面上选择“删除” ,然后选择“是”来确认你的决策。 On the MDM policy - West - Owners page, select the user you want to remove as a group owner, choose Remove from the user's information page, and select Yes to confirm your decision.

    用户的信息页面,其中突出显示了“删除”选项

    删除所有者后,可以返回到“所有者” 页面,并且会看到该名称已从所有者列表中删除。After you remove the owner, you can return to the Owners page and see the name has been removed from the list of owners.

后续步骤Next steps