diff --git a/main.tf b/main.tf
index 0fc7905..2aa583e 100644
--- a/main.tf
+++ b/main.tf
@@ -67,8 +67,9 @@ provider "azurerm" {
 }
 
 resource "azurerm_role_assignment" "grafana_admin" {
+  count = var.grafana_admin_object_id != null ? 1 : 0
 
   scope                = data.azurerm_resource_group.rg.id
   role_definition_name = "Grafana Admin"
-  principal_id         = var.admin_user_object_id
+  principal_id         = var.grafana_admin_object_id
 }
diff --git a/variables.tf b/variables.tf
index f04d684..6a7c72d 100644
--- a/variables.tf
+++ b/variables.tf
@@ -32,7 +32,8 @@ variable "log_analytics_workspace" {
   description = "Whether or not you want to deploy a log analytics workspace for the Grafana instance, set to false if you already have an instance."
 }
 
-variable "admin_user_object_id" {
+variable "grafana_admin_object_id" {
   type        = string
+  default     = null
   description = "The object ID of the user or group you want to grant admin access on the Grafana instance."
 }