Currently the AAD “Security Reader” role can manage Microsoft Defender for Cloud Apps alerts, however, it can only view alerts from all other security workloads. The AAD “Security Reader” role update will now be aligned with AAD role definition to provide clarity and prevent confusion of the same role use.
When this will happen
As of August 28, 2022, this update will take effect.
How this will affect your organization
Any users who were assigned an AAD “Security Reader” role will not be able to manage the Microsoft Defender for Cloud Apps alerts after August 28, 2022.
What you need to do to prepare
To continue to manage alerts, the users’ role should be updated to an AAD “Security Operator”. You may want to notify your users about this change and update your training and documentation as appropriate. To learn more about admin permissions, please visit this page.
Message ID: MC406649
Published: 28 July 2022
Updated: 28 July 2022
Action required by: 28 August 2022
Platform: World tenant, Online
Alex Lim
Alex Lim is a certified IT Technical Support Architect with over 15 years of experience in designing, implementing, and troubleshooting complex IT systems and networks. He has worked for leading IT companies, such as Microsoft, IBM, and Cisco, providing technical support and solutions to clients across various industries and sectors. Alex has a bachelor’s degree in computer science from the National University of Singapore and a master’s degree in information security from the Massachusetts Institute of Technology. He is also the author of several best-selling books on IT technical support, such as The IT Technical Support Handbook and Troubleshooting IT Systems and Networks. Alex lives in Bandar, Johore, Malaysia with his wife and two chilrdren. You can reach him at [email protected] or follow him on Website | Twitter | Facebook
