First lessonBlog
Sign Up

Question 12 of 17

Previous QuestionNext Question

Your organization has a Microsoft 365 tenant with auditing enabled.

You've been asked to grant John Gruber the ability to review audit logs in your Microsoft 365 tenant. You give John Gruber the Global administrator role.

A few days later and learn John Gruber disabled auditing.

You re-enable auditing and then remove John Gruber's user account from the Global administrator role.

You need to give John Gruber the ability to review audit logs but he can't be given permission to disable auditing. Your organization adheres to the principle of least privilege.

Which role should you give to John Gruber?

The security reader can read all security-related reports and audit logs but can't make any changes.

Did you like the site?