Hi there
In SharePoint Online - Can a SharePoint group or AD group or some other group have Owner permissions on all SharePoint site collections?
Which one, and how?
Thanks.
Hi there
In SharePoint Online - Can a SharePoint group or AD group or some other group have Owner permissions on all SharePoint site collections?
Which one, and how?
Thanks.
Hi, @frob-0826
In SharePoint Online, you can create an M365 group to contain all the required members and grant them owner permission on all site collections. You just need to repeat the granting owner permission process in each site collection.
If you are able to use PowerShell here is a script you can use to loop through all site collections.
$TenantSiteURL="https://<Tenant Name>-admin.sharepoint.com/"
Connect-PnPOnline -Url $TenantSiteURL -UseWebLogin
#Get All Site Collections
$Sites = Get-PnPTenantSite
#Loop through each Site Collection
ForEach ($Site in $Sites) {
Write-host "Processing data for $Site.Url"
Connect-PnPOnline -Url $Site.Url -UseWebLogin
Add-PnPSiteCollectionAdmin -Owners "c:0o.c|federateddirectoryclaimprovider|<object ID>"
Disconnect-PnPOnline
}
You can get the Object ID for group in Azure AD. 
Remember to replace the Tenant Name and object ID with your own one.
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi JerryXu
By a M365 group do you mean an Azure-AD-Security-Group? Are they the same thing?
Thank you.
Hi Jerry
The doc you mentioned, says that to grant permissions to resources like SharePoint one should use Azure-AD-Security groups.
I guess you meant to say that I should create Azure-AD-Security-Group to grant certain users owner permissions on all Site Collections, right?
Thanks.
4 people are following this question.