From 0c3a056adfdf4ae0763e5c7f2341c421e4e5b411 Mon Sep 17 00:00:00 2001 From: Joey Caparas Date: Thu, 14 Feb 2019 11:32:05 -0800 Subject: [PATCH] add role settings --- ...er-roles-windows-defender-advanced-threat-protection.md | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-atp/user-roles-windows-defender-advanced-threat-protection.md b/windows/security/threat-protection/windows-defender-atp/user-roles-windows-defender-advanced-threat-protection.md index 15fb762c58..89ee51ebff 100644 --- a/windows/security/threat-protection/windows-defender-atp/user-roles-windows-defender-advanced-threat-protection.md +++ b/windows/security/threat-protection/windows-defender-atp/user-roles-windows-defender-advanced-threat-protection.md @@ -35,13 +35,16 @@ The following steps guide you on how to create roles in Windows Defender Securit 3. Enter the role name, description, and permissions you'd like to assign to the role. - **Role name** - - **Description** - - **Permissions** - **View data** - Users can view information in the portal. - **Alerts investigation** - Users can manage alerts, initiate automated investigations, collect investigation packages, manage machine tags, and export machine timeline. - **Active remediation actions** - Users can take response actions and approve or dismiss pending remediation actions. + - **Manage portal system settings** - Users can configure storage settings, SIEM and threat intel API settings (applies globally), advanced settings, automated file uploads, roles and machine groups. + + >[!NOTE] + >This setting is only available in the Windows Defender ATP administrator (default) role. + - **Manage security settings** - Users can configure alert suppression settings, manage allowed/blocked lists for automation, manage folder exclusions for automation, onboard and offboard machines, and manage email notifications. 4. Click **Next** to assign the role to an Azure AD group.