You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently the AAD “Security Reader” may manage Microsoft Defender for Cloud Apps alerts while the same role may only view alerts from all other workloads. The purpose of this change is to align the AAD “Security Reader” role assignments to provide clarity for the customers, prevent confusion of the same role use
-------
cc: @rolyon
Copy file name to clipboardExpand all lines: articles/active-directory/roles/permissions-reference.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1948,7 +1948,7 @@ Users with this role can manage alerts and have global read-only access on secur
1948
1948
|[Office 365 Security & Compliance Center](https://support.office.com/article/About-Office-365-admin-roles-da585eea-f576-4f55-a1e0-87090b6aaa9d)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1949
1949
|[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment)| All permissions of the Security Reader role<br>View, investigate, and respond to security alerts |
1950
1950
|[Intune](/intune/role-based-access-control)| All permissions of the Security Reader role |
1951
-
|[Cloud App Security](/cloud-app-security/manage-admins)| All permissions of the Security Reader role |
1951
+
|[Microsoft Defender for Cloud Apps](/cloud-app-security/manage-admins)| All permissions of the Security Reader role>View, investigate, and respond to security alerts|
1952
1952
|[Microsoft 365 service health](/microsoft-365/enterprise/view-service-health)| View the health of Microsoft 365 services |
1953
1953
1954
1954
> [!div class="mx-tableFixed"]
@@ -1980,7 +1980,7 @@ Identity Protection Center | Read all security reports and settings information
[Microsoft Defender for Endpoint](/microsoft-365/security/defender-endpoint/prepare-deployment) | View and investigate alerts. When you turn on role-based access control in Microsoft Defender for Endpoint, users with read-only permissions such as the Azure AD Security Reader role lose access until they are assigned to a Microsoft Defender for Endpoint role.
1982
1982
[Intune](/intune/role-based-access-control) | Views user, device, enrollment, configuration, and application information. Cannot make changes to Intune.
1983
-
[Cloud App Security](/cloud-app-security/manage-admins) | Has read permissions and can manage alerts
1983
+
[Microsoft Defender for Cloud Apps](/cloud-app-security/manage-admins) | Has read permissions.
1984
1984
[Microsoft 365 service health](/office365/enterprise/view-service-health) | View the health of Microsoft 365 services
0 commit comments