Use the service admin role to manage your tenant
Applies to Dynamics 365 (online), version 9.x
Applies to Dynamics 365 (online), version 8.x
To help you administer Dynamics 365 (online), you can assign users to manage Dynamics 365 at the tenant level without having to assign the more powerful Office 365 global admin privileges.
Users with the Dynamics 365 (online) service admin role can:
Sign in to and manage multiple Dynamics 365 (online) instances. If an instance uses a security group, a service administrator would need to be added to the security group in order to manage that instance.
Perform admin functions in Dynamics 365 because they have the Dynamics 365 system admin role. The service admin must be assigned a Dynamics 365 license.
A Dynamics 365 (online) service admin cannot do functions restricted to the Office 365 global admin such as manage user accounts, manage subscriptions, access settings for Office 365 apps like Exchange or SharePoint.
The Dynamics 365 (online) service admin can manage instances of version 8.1 (Dynamics CRM Online 2016 Update 1) or later.
Here's a matrix of what's available with the various Office 365 roles.
|Office 365 role / feature||Backup & restore||Sandbox copy||Configure new instances||Manage an instance||Add Dynamics 365 licenses||Approve Dynamics 365 emails||Access support requests||Access Service health||Access Message center|
|Office 365 global admin||Yes||Yes||Yes||Yes||Yes||Yes||Yes||Yes||Yes|
|Office 365 service admin||No||No||No||No||No||No||Yes||Yes||Yes|
|Office 365 user with Dynamics 365 system admin role*||Yes||No||No||Yes||No||No||No||Only in Dynamics 365 admin center||No|
|Dynamics 365 service admin with Dynamics 365 system admin role||Yes||Yes||Yes||Yes||No||No||Yes||Yes||Yes|
*To access the Dynamics 365 Administration Center with these roles, you'll need to sign in directly. See Direct sign in to the Dynamics 365 Administration Center.