Published: November 21, 2013
Updated: November 18, 2013
Applies To: Windows Azure
A group is a collection of users and groups that can be managed as a single unit. Users and groups that belong to a particular group are referred to as group members. Using groups can simplify administration by assigning a common set of permissions and rights to many accounts at once, rather than assigning permissions and rights to each account individually.
For the Fall 2013 preview release of Windows Azure, you can only create Security groups using the Windows Azure Management Portal.
You can use groups as a convenient way to assign access to applications for users in cases when you need to assign many users to the same application. You can also use groups when configuring access management of other online services that control access to resources, for example, SharePoint Online.
If you have configured directory synchronization, you can see groups that have been synchronized from your local on-premises Windows Server Active Directory, which have the value 'Local Active Directory' in the 'Sourced From' property. You must continue to manage these groups in your local Active Directory; these groups cannot be managed or deleted in the Windows Azure Management Portal.
If you have Office 365, you can see distribution groups and mail-enabled security groups that were created and managed within the Exchange Admin Center within Office 365. These groups have the value 'Office 365' in the 'Sourced From' property, and must continue to be managed in the Exchange Admin Center.
|In order to be able to assign a group to an application you must be using Windows Azure Active Directory Premium. If you have Windows Azure AD Premium, you can also use groups to assign access to a SaaS application that's integrated with Windows Azure AD. For more information, see Assign access for a group to a SaaS application.|