Assigning 'Security Administrator' or 'Security Reader' Role
To audit Successful and/or Failed Logons in Azure AD, the Security Administrator or Security Reader role is required. To assign the role you need, do the following:
Sign in to Azure AD portal using your Microsoft account.
- Select Azure Active Directory on the left.
- Navigate to Roles and administrators.
- Click the Security administrator or Security Reader role.
- Click Add member and select the account that you want to assign the role to.
For more information on the Administrator role permissions, refer to the following Microsoft article: Administrator role permissions in Azure Active Directory.