Office 365 comes with a wealth of administrator roles, roughly 22 different ones, such as Exchange or License Administrator. It looks great on the surface, and for small shops with simple use cases, the native Office 365 admin center and role delegation work relatively well. But as smaller shops grow, or enterprises of any substance adopt the cloud-based suite, the native Office 365 Admin Center console wears thin. Nowhere is this truer than with delegating admin access – even if you use Admin Center-based access control (RBAC) with its 20-plus roles. When Office 365 installations grow large, managing administrative access becomes not just a bear – but a security crater as well. The native admin delegation tool in Office 365 is simply too blunt, lacking the granularity in giving rights large shops need. IT pros who thought their lives would be easier with a cloud suite find themselves mired in endless administrations tasks, trying fruitlessly to give admins and users the exact level of visibility they need. Frustrated, IT often gives up, simply assigning all admins the same broad global permissions. Too many people with too much permission opens gaping holes in the network.