Delegate device management administrator privileges (beta)

To manage devices in your organization you need to be an administrator with mobile device management privileges. Super administrators have these privileges by default. You can also assign limited administrator privileges to some users to help with your organization’s device management tasks.

What privileges can I delegate?

Users with mobile device management privileges can perform the following tasks in the organizational units that they have privileges for:

  • Review devices and device details.
  • Perform management tasks, such as approving, blocking, deleting, and wiping devices.
  • Apply settings for mobile devices and endpoints.

Additionally, only administrators who have privileges for your top-level organization can: 

  • Access device reports and log events.
  • Automate mobile management tasks with rules. 
  • Manage web and mobile apps. 
  • Distribute iOS apps with Apple Volume Purchase Program (VPP).
  • Manage your organization's Apple push certificate.

Step 1: Create a custom device management role

  1. Sign in to your Google Admin console.

    Sign in using an account with super administrator privileges (does not end in @gmail.com).

  2. In the Admin console, go to Menu and then Accountand thenAdmin roles.
  3. Click Create new role.
  4. Enter a name and, optionally, a description for the role and click Continue.
  5. From the Privilege Name list, under Servicesand thenMobile Device Management, check the Manage Devices and Settings box.
    Tip: Use the Admin console privileges search box to find the privilege by name.  
  6. Click Continue
  7. Click Create role.

Step 2: Assign the role to a user

  1. From the custom device management role page, click Assign members.
  2. Enter a user and press Enter or Return on your keyboard.
  3. (Optional) To restrict the user’s device management privileges to a specific organizational unit, next to the user, click the organizational unit.
  4. Select the organizational unit and click Done.
  5. Click Assign Role.

Related topic

Create an admin role for an organizational unit

Was this helpful?

How can we improve it?
Search
Clear search
Close search
Main menu
6694523545302256894
true
Search Help Center
true
true
true
true
true
73010
false
false