You have a Microsoft 365 E5 subscription that contains the users shown in the following table. You need to identify which user can enable Microsoft Defender for Endpoint roles. Which user should you identify?
The answer is D, User2.
Only users with the Security Administrator role in Azure AD can enable Microsoft Defender for Endpoint roles. The other roles, such as Application Administrator, Security Operator, and User Administrator, do not have the necessary permissions.
Here is a table of the permissions for each role:
Role Permissions
Security Administrator Can enable Microsoft Defender for Endpoint roles
Security Operator Can view and manage Microsoft Defender for Endpoint data
Application Administrator Can manage applications and users
User Administrator Can manage user accounts
When you first log in to the Microsoft 365 Defender portal, you're granted either full access or read only access. Full access rights are granted to users with Security Administrator or Global Administrator roles in Azure AD. Read only access is granted to users with a Security Reader role in Azure AD.
Before enabling the feature, it's important that you have a Global Administrator role or Security Administrator role in Azure AD and that you have your Azure AD groups ready to reduce the risk of being locked out of the portal.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.MS-500 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Bob27745
Highly Voted 2 years, 9 months agoMaxx4
Most Recent 2 years agoJoeP1
2 years, 3 months agopete26
2 years, 9 months agoheshmat2022
2 years, 9 months ago