You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/roles/permissions-reference.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -571,7 +571,7 @@ In | Can do
571
571
[Compliance Manager](/office365/securitycompliance/meet-data-protection-and-regulatory-reqs-using-microsoft-cloud) | Track, assign, and verify your organization's regulatory compliance activities
572
572
[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d) | Manage data governance<br>Perform legal and data investigation<br>Manage Data Subject Request<br><br>This role has the same permissions as the [Compliance Administrator RoleGroup](/microsoft-365/security/office-365-security/permissions-in-the-security-and-compliance-center#permissions-needed-to-use-features-in-the-security--compliance-center) in Office 365 Security & Compliance Center role-based access control.
573
573
[Intune](/intune/role-based-access-control) | View all Intune audit data
574
-
[Cloud App Security](/cloud-app-security/manage-admins) | Has read-only permissions and can manage alerts<br>Can create and modify file policies and allow file governance actions<br>Can view all the built-in reports under Data Management
574
+
[Microsoft Defender for Cloud Apps](/defender-cloud-apps/manage-admins) | Has read-only permissions and can manage alerts<br>Can create and modify file policies and allow file governance actions<br>Can view all the built-in reports under Data Management
575
575
576
576
> [!div class="mx-tableFixed"]
577
577
> | Actions | Description |
@@ -594,7 +594,7 @@ In | Can do
594
594
[Compliance Manager](/office365/securitycompliance/meet-data-protection-and-regulatory-reqs-using-microsoft-cloud) | Track, assign, and verify your organization's regulatory compliance activities
595
595
[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d) | Manage data governance<br>Perform legal and data investigation<br>Manage Data Subject Request<br><br>This role has the same permissions as the [Compliance Data Administrator RoleGroup](/microsoft-365/security/office-365-security/permissions-in-the-security-and-compliance-center#permissions-needed-to-use-features-in-the-security--compliance-center) in Office 365 Security & Compliance Center role-based access control.
596
596
[Intune](/intune/role-based-access-control) | View all Intune audit data
597
-
[Cloud App Security](/cloud-app-security/manage-admins) | Has read-only permissions and can manage alerts<br>Can create and modify file policies and allow file governance actions<br>Can view all the built-in reports under Data Management
597
+
[Microsoft Defender for Cloud Apps](/defender-cloud-apps/manage-admins) | Has read-only permissions and can manage alerts<br>Can create and modify file policies and allow file governance actions<br>Can view all the built-in reports under Data Management
598
598
599
599
> [!div class="mx-tableFixed"]
600
600
> | Actions | Description |
@@ -1874,7 +1874,7 @@ Identity Protection Center | All permissions of the Security Reader role<br>Addi
1874
1874
Azure Advanced Threat Protection | Monitor and respond to suspicious security activity
1875
1875
[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment) | Assign roles<br>Manage machine groups<br>Configure endpoint threat detection and automated remediation<br>View, investigate, and respond to alerts<br/>View machines/device inventory
1876
1876
[Intune](/intune/role-based-access-control) | Views user, device, enrollment, configuration, and application information<br>Cannot make changes to Intune
1877
-
[Cloud App Security](/cloud-app-security/manage-admins) | Add admins, add policies and settings, upload logs and perform governance actions
1877
+
[Microsoft Defender for Cloud Apps](/defender-cloud-apps/manage-admins) | Add admins, add policies and settings, upload logs and perform governance actions
1878
1878
[Microsoft 365 service health](/office365/enterprise/view-service-health) | View the health of Microsoft 365 services
1879
1879
[Smart lockout](../authentication/howto-password-smart-lockout.md) | Define the threshold and duration for lockouts when failed sign-in events happen.
1880
1880
[Password Protection](../authentication/concept-password-ban-bad.md) | Configure custom banned password list or on-premises password protection.
@@ -1948,7 +1948,7 @@ Users with this role can manage alerts and have global read-only access on secur
1948
1948
|[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1949
1949
|[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1950
1950
|[Intune](/intune/role-based-access-control)| All permissions of the Security Reader role |
1951
-
|[Microsoft Defender for Cloud Apps](/cloud-app-security/manage-admins)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1951
+
|[Microsoft Defender for Cloud Apps](/defender-cloud-apps/manage-admins)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1952
1952
|[Microsoft 365 service health](/microsoft-365/enterprise/view-service-health)| View the health of Microsoft 365 services |
1953
1953
1954
1954
> [!div class="mx-tableFixed"]
@@ -1980,7 +1980,7 @@ Identity Protection Center | Read all security reports and settings information
[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment) | View and investigate alerts. When you turn on role-based access control in Microsoft Defender for Endpoint, users with read-only permissions such as the Azure AD Security Reader role lose access until they are assigned to a Microsoft Defender for Endpoint role.
1982
1982
[Intune](/intune/role-based-access-control) | Views user, device, enrollment, configuration, and application information. Cannot make changes to Intune.
1983
-
[Microsoft Defender for Cloud Apps](/cloud-app-security/manage-admins) | Has read permissions.
1983
+
[Microsoft Defender for Cloud Apps](/defender-cloud-apps/manage-admins) | Has read permissions.
1984
1984
[Microsoft 365 service health](/office365/enterprise/view-service-health) | View the health of Microsoft 365 services
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments