So I have Azure subscription, associated with my MicrosoftID. I've added my Office 365 tenant to this Azure subscription, via the usual method New -> App service -> Active directory -> Directory -> Custom Create -> Use existing directory. This in turn added the MicrosoftID as a global admin to my O365 tenant. So far so good, nothing new here.
If however I add the user object associated with that MicrosoftID in my O365 tenant to the "Partner Tier1 Support" MSOL Role, I am no longer able to access the AD in Azure. Instead, I am greeted by the following message: "You do not have permission to access these resources."
The object is still listed under Global Admins in O365, but it seems like the Partner role has precedence over Global Admin? The moment I remove him from the "Partner Tier1 Support" and do a refresh on the Azure console, it works as expected. Bug or a feature?