Update (FIDO) device keys documentation

[BertinDEV]

For the Role user admin

on line 2722 the more information states. that the role can Update (FIDO) device keys

but then later on line 2729 it states Cannot manage MFA.

on this authentication-table it states that user admin Manage user's auth methods no

the same Fido key reference is made here in the about-admin-roles.md

if you look at the microsoft graph documentation for List fido2AuthenticationMethod

the following
For delegated scenarios where an admin is acting on another user, the administrator needs at least one of the following Microsoft Entra roles
Global Reader
Authentication Administrator
Privileged Authentication Administrator

and for Delete fido2AuthenticationMethod

For delegated scenarios where an admin is acting on another user, the administrator needs at least the Authentication Administrator or Privileged Authentication Administrator

updating fido2 security key does not seem to be possible with user admin?

Document Details

⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.

• ID: 0767aac4-fcd9-eaac-2c30-8f17d8eadd92
• Version Independent ID: a380a828-03f9-e037-3a62-e4165fda7cb6
• Content: Microsoft Entra built-in roles - Microsoft Entra ID
• Content Source: docs/identity/role-based-access-control/permissions-reference.md
• Service: entra-id
• Sub-service: role-based-access-control
• GitHub Login: @rolyon
• Microsoft Alias: rolyon

[TPavanBalaji]

@BertinDEV
Thanks for your feedback! We will investigate and update as appropriate.

[Naveenommi-MSFT]

@BertinDEV
Thank you for bringing this to our attention.
I've delegated this to content author @rolyon, who will review it and offer their insightful opinions.