You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/roles/permissions-reference.md
+3-3Lines changed: 3 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1763,7 +1763,7 @@ Identity Protection Center | All permissions of the Security Reader role<br>Addi
1763
1763
[Privileged Identity Management](../privileged-identity-management/pim-configure.md) | All permissions of the Security Reader role<br>**Cannot** manage Azure AD role assignments or settings
1764
1764
[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d) | Manage security policies<br>View, investigate, and respond to security threats<br>View reports
1765
1765
Azure Advanced Threat Protection | Monitor and respond to suspicious security activity
1766
-
Windows Defender ATP and EDR | Assign roles<br>Manage machine groups<br>Configure endpoint threat detection and automated remediation<br>View, investigate, and respond to alerts
1766
+
[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment)| Assign roles<br>Manage machine groups<br>Configure endpoint threat detection and automated remediation<br>View, investigate, and respond to alerts<br/>View machines/device inventory
1767
1767
[Intune](/intune/role-based-access-control) | Views user, device, enrollment, configuration, and application information<br>Cannot make changes to Intune
1768
1768
[Cloud App Security](/cloud-app-security/manage-admins) | Add admins, add policies and settings, upload logs and perform governance actions
1769
1769
[Microsoft 365 service health](/office365/enterprise/view-service-health) | View the health of Microsoft 365 services
@@ -1828,7 +1828,7 @@ Users with this role can manage alerts and have global read-only access on secur
1828
1828
|[Azure AD Identity Protection](../identity-protection/overview-identity-protection.md)| All permissions of the Security Reader role<br>Additionally, the ability to perform all Identity Protection Center operations except for resetting passwords and configuring alert e-mails. |
1829
1829
|[Privileged Identity Management](../privileged-identity-management/pim-configure.md)| All permissions of the Security Reader role |
1830
1830
|[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1831
-
|Windows Defender ATP and EDR| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1831
+
|[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1832
1832
|[Intune](/intune/role-based-access-control)| All permissions of the Security Reader role |
1833
1833
|[Cloud App Security](/cloud-app-security/manage-admins)| All permissions of the Security Reader role |
1834
1834
|[Microsoft 365 service health](/microsoft-365/enterprise/view-service-health)| View the health of Microsoft 365 services |
@@ -1860,7 +1860,7 @@ In | Can do
1860
1860
Identity Protection Center | Read all security reports and settings information for security features<br><ul><li>Anti-spam<li>Encryption<li>Data loss prevention<li>Anti-malware<li>Advanced threat protection<li>Anti-phishing<li>Mail flow rules
1861
1861
[Privileged Identity Management](../privileged-identity-management/pim-configure.md) | Has read-only access to all information surfaced in Azure AD Privileged Identity Management: Policies and reports for Azure AD role assignments and security reviews.<br>**Cannot** sign up for Azure AD Privileged Identity Management or make any changes to it. In the Privileged Identity Management portal or via PowerShell, someone in this role can activate additional roles (for example, Global Administrator or Privileged Role Administrator), if the user is eligible for them.
Windows Defender ATP and EDR | View and investigate alerts. When you turn on role-based access control in Windows Defender ATP, users with read-only permissions such as the Azure AD Security Reader role lose access until they are assigned to a Windows Defender ATP role.
1863
+
[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment)| View and investigate alerts. When you turn on role-based access control in Microsoft Defender for Endpoint, users with read-only permissions such as the Azure AD Security Reader role lose access until they are assigned to a Microsoft Defender for Endpoint role.
1864
1864
[Intune](/intune/role-based-access-control) | Views user, device, enrollment, configuration, and application information. Cannot make changes to Intune.
1865
1865
[Cloud App Security](/cloud-app-security/manage-admins) | Has read permissions and can manage alerts
1866
1866
[Microsoft 365 service health](/office365/enterprise/view-service-health) | View the health of Microsoft 365 services
0 commit comments