You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/roles/protected-actions-add.md
+6-6Lines changed: 6 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,6 +1,6 @@
1
1
---
2
-
title: Add, remove, or test protected actions in Azure AD (preview)
3
-
description: Learn how to add, remove, or test protected actions in Azure Active Directory.
2
+
title: Add, test, or remove protected actions in Azure AD (preview)
3
+
description: Learn how to add, test, or remove protected actions in Azure Active Directory.
4
4
services: active-directory
5
5
author: rolyon
6
6
manager: amycolannino
@@ -12,13 +12,13 @@ ms.topic: how-to
12
12
ms.date: 04/05/2022
13
13
---
14
14
15
-
# Add, remove, or test protected actions in Azure AD (preview)
15
+
# Add, test, or remove protected actions in Azure AD (preview)
16
16
17
17
> [!IMPORTANT]
18
18
> Protected actions are currently in PREVIEW.
19
19
> See the [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/) for legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
20
20
21
-
[Protected actions](./protected-actions-overview.md) in Azure Active Directory (Azure AD) are permissions that have been assigned Conditional Access polices that are enforced when a user attempts to perform an action. This article describes how to add, remove, and test protected actions.
21
+
[Protected actions](./protected-actions-overview.md) in Azure Active Directory (Azure AD) are permissions that have been assigned Conditional Access polices that are enforced when a user attempts to perform an action. This article describes how to add, test, or remove protected actions.
22
22
23
23
## Prerequisites
24
24
@@ -46,7 +46,7 @@ To add protection actions, assign a Conditional Access policy to one or more per
46
46
47
47
If no values are available, [configure a Conditional Access authentication context](../conditional-access/concept-conditional-access-cloud-apps.md#authentication-context) for your tenant.
48
48
49
-
1. Select **Select permissions** and select the permission that will be protected by Conditional Access.
49
+
1. Select **Select permissions** and select the permissions to protect with Conditional Access.
50
50
51
51
:::image type="content" source="media/protected-actions-add/permissions-select.png" alt-text="Screenshot of Add protected actions page with permissions selected." lightbox="media/protected-actions-add/permissions-select.png":::
1. Find and select the permission Conditional Access policy to unassign.
96
96
97
-
:::image type="content" source="media/protected-actions-add/permissions-remove.png" alt-text="Screenshot of Protected actions page with permissions selected to remove." lightbox="media/protected-actions-add/permissions-remove.png":::
97
+
:::image type="content" source="media/protected-actions-add/permissions-remove.png" alt-text="Screenshot of Protected actions page with permission selected to remove." lightbox="media/protected-actions-add/permissions-remove.png":::
Copy file name to clipboardExpand all lines: articles/active-directory/roles/protected-actions-overview.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -42,7 +42,7 @@ For this preview, Conditional Access policies can be applied to limited set of p
42
42
- Custom rules that define network locations
43
43
- Protected action management
44
44
45
-
Here is the initial set of permissions:
45
+
Here's the initial set of permissions:
46
46
47
47
> [!div class="mx-tableFixed"]
48
48
> | Permission | Description |
@@ -57,7 +57,7 @@ Here is the initial set of permissions:
57
57
58
58
## How do protected actions compare with Privileged Identity Management role activation?
59
59
60
-
[Privileged Identity Management role activation](../privileged-identity-management/pim-how-to-change-default-settings.md) can also be assigned Conditional Access policies. This allows for policy enforcement only when a user activates a role, providing the most comprehensive protection. Protected actions are enforced only when a user takes an action that requires permissions with Conditional Access policy assigned to it. This allows for high impact permissions to be protected, independent of a user role. Privileged Identity Management role activation and protected actions can be used together, for the strongest coverage.
60
+
[Privileged Identity Management role activation](../privileged-identity-management/pim-how-to-change-default-settings.md) can also be assigned Conditional Access policies. This capability allows for policy enforcement only when a user activates a role, providing the most comprehensive protection. Protected actions are enforced only when a user takes an action that requires permissions with Conditional Access policy assigned to it. Protected actions allows for high impact permissions to be protected, independent of a user role. Privileged Identity Management role activation and protected actions can be used together, for the strongest coverage.
61
61
62
62
## Steps to use protected actions
63
63
@@ -119,4 +119,4 @@ Here are some best practices for using protected actions.
119
119
120
120
## Next steps
121
121
122
-
-[Add, remove, or test protected actions in Azure AD](./protected-actions-add.md)
122
+
-[Add, test, or remove protected actions in Azure AD](./protected-actions-add.md)
0 commit comments