You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: ATPDocs/configure-scoped-access.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,7 +8,7 @@ ms. reviewer: 'LiorShapiraa'
8
8
9
9
# Configure scoped access for Microsoft Defender for Identity
10
10
11
-
As organizations grow and their identity environments become more complex, it’s important to control who has access to which resources. Microsoft Defender for Identity scoping lets you focus monitoring on specific Active Directory domains. This helps improve efficiency by reducing noise from nonessential data and focusing on critical assets. You can also limit visibility to specific entities, so access matches each person's responsibilities.
11
+
As organizations grow and their identity environments become more complex, it's important to control who has access to which resources. Microsoft Defender for Identity scoping lets you focus monitoring on specific Active Directory domains. This helps improve efficiency by reducing noise from nonessential data and focusing on critical assets. You can also limit visibility to specific entities, so access matches each person's responsibilities.
12
12
Scoped access is implemented by creating a custom role using Microsoft Defender XDR Unified RBAC. During the role configuration process, you define which users or groups have access to specific Active Directory domains or Microsoft Entra ID groups.
13
13
14
14
## Prerequisites
@@ -24,7 +24,7 @@ Before you begin, make sure you meet the following requirements:
24
24
### Configure scoping rules
25
25
To enable identity scoping, follow these steps:
26
26
27
-
1. Navigate to **Permissions > Microsoft Defender XDR > Roles**
27
+
1. Navigate to **Permissions > Microsoft Defender XDR > Roles**.
28
28
29
29
:::image type="content" source="media/custom-roles/permissions-roles.png" alt-text="Screenshot showing the roles page in the Defender XDR portal.":::
30
30
@@ -40,8 +40,8 @@ To enable identity scoping, follow these steps:
40
40
1. Under **Assign users and groups**, enter the usernames or Microsoft Entra ID groups you want to assign to the role.
41
41
1. Select Microsoft Defender for Identity as the data source.
42
42
1. Under **Scope**, select the user groups (AD domains) that will be scoped to the assignment.
43
-
:::image type="content" source="media/custom-roles/add-assignment.png" alt-text="Screenshot showing how to add Defender for Identity to your scoping role":::
44
-
1. Select Add.
43
+
:::image type="content" source="media/custom-roles/add-assignment.png" alt-text="Screenshot showing how to add Defender for Identity to your scoping role.":::
0 commit comments