PdfPrep.com

To which role should you add User1?

You have a Microsoft 365 subscription that contains a Microsoft Azure Active Directory (Azure AD) tenant named contoso.com. The tenant includes a user named User1.

You enable Azure AD Identity Protection.

You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege.

To which role should you add User1?
A . Security reader
B . User administrator
C . Service administrator
D . Reports reader

Answer: A

Explanation:

Either one of the following three roles can review the list in Azure AD Identity Protection of users flagged for risk:

✑ Security Administrator

✑ Global Administrator

✑ Security Reader

Explanation:

Reference: https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/concept-risky-sign-ins

Exit mobile version