I believe you might be confused about how to create new Azure subscriptions just after login into EA Portal. As I have illustrated in an article below, EA Portal has some types of roles named Enterprise Administrator, Department Administrator, and Account Owner.
normalian.hatenablog.com
You need to utilize these roles properly to manage your billing and subscriptions on EA Portal.
What's can do by each role?
Here is rough description for each roles, but note that Enterprise Administrator can achieve almost everything except for creating new subscriptions and only Account Owner can do that.
- Enterprise Administrator
- Change EA Portal settings
- Invite new Enterprise Administrators
- Create new departments
- Invite new department administrators into all departments
- Retrieve all departments
- Retrieve all Account Owners
- Invite new Account Owners
- Retrieve all subscriptions
- Can't create new subscriptions
- Department Administrator
- This role is optional
- Invite new department administrators into own departments
- Retrieve own departments
- Retrieve all Account Owners in own departments
- Invite new Account Owners into own departments
- Retrieve all subscriptions on own departments
- Can't create new subscriptions
- Account Owner
- Create new subscriptions
How to invite as Enterprise Administrator
Only current Enterprise Administrator can achieve these operations. Open https://ea.azure.com and following an image below.
A wizard will come up from right side and you can invite new Enterprise Administrator by following an image below. Please confirm "Auth Leve" if you can't find your proper Authentication Type on your EA Portal.
New Enterprise Administrator will receive an invitation mail from your EA Portal and activate own account.
How to invite as Department Administrator
Enterprise Administrator and Department Administrator can achieve these operations. Open https://ea.azure.com and following an image below.
These steps are almost the same with Enterprise Administrator. A wizard will come up from right side and you can invite a new Department Administrator by following an image below. Please confirm "Auth Leve" if you can't find your proper Authentication Type on your EA Portal.
How to invite as Account Owner
Enterprise Administrator and Department Administrator can achieve these operations. Open https://ea.azure.com and following an image below.
These steps are almost the same with Enterprise Administrator. A wizard will come up from right side and you can invite a new Department Administrator by following an image below. Please confirm "Auth Leve" if you can't find your proper Authentication Type on your EA Portal. In addtion that, you can put display name for your EA Portal.
You can find your new Account Owner like below at pending status. It will be activated when the invited user of "Account Owner" will log in to your EA Portal.
What's best practice for these EA Portal hierarchies?
In small organizations, it should work by utilizing only Enterprise Administrator and Account Owner. In addition that, you can hold such roles into a user account like below.
In this diagram, xxxx01@hotmail.com can do everything on your EA Portal. You can create such accounts by following "How to invite as Enterprise Administrator" and "How to invite as Account Owner" into the same account, but consider and design proper architecture when your organization is large or users are many.
