Question 10 of 17

Your organization has a Microsoft 365 tenant with Microsoft Defender for Endpoint configured with multiple policies.

Your organization has recently hired a new person named John Gruber.

Your manager has informed you that John Gruber will need to view the Microsoft Defender for Endpoint reports in the Microsoft 365 Defender dashboard.

Which role should you assign John Gruber to grant him the ability to view the Microsoft Defender for Endpoint reports?

https://www.gitbit.org/course/ms-500/learn/Creating-and-managing-admins-through-roles-7CpqFkPZU

• The Exchange Administrator role will grant the user the ability to manage Exchange Online. It doesn't give the user the ability to read or edit Defender for Endpoint reports.
• The Compliance Administrator role will grant the user the ability to manage all aspects of the Microsoft 365 Compliance / Purview admin center. It won't give the user the ability to read or manage the Defender for Endpoint reports.
• The Message Center Reader role will grant the user the ability to read messages and updates in the Microsoft 365 message center only. It won't give the user the ability to read or manage the Defender for Endpoint reports.
• The Security Administrator role will grant the user the ability to read and manage all aspects of the Microsoft 365 Defender admin center. That includes the Defender for Endpoint reports.

While the Security Administrator role is the best option with the options provided another role would be a better option. The Security Reader role would grant the user the ability to read the reports but wouldn't give the user the ability to make any changes. If the Security Reader role is an option, that would be the best choice.

https://docs.microsoft.com/en-us/office365/securitycompliance/view-reports-for-atp#what-permissions-are-needed-to-view-the-atp-reports