You need to provide a user with the ability to view data loss prevention (DLP) alerts in the Microsoft 365 compliance center.
The solution must use the principle of least privilege.
Which role should you assign to the user?
Click on the arrows to vote for the correct answer
A. B. C. D.D.
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-configure-view-alerts-policies?view=o365-worldwideThe correct answer is D. Security reader.
Explanation:
When providing access to the Microsoft 365 compliance center for viewing data loss prevention (DLP) alerts, it is important to use the principle of least privilege. This means that users should be granted the minimum necessary permissions to complete their job functions and nothing more. This helps to reduce the risk of unauthorized access, data breaches, and other security incidents.
Out of the four options provided, the Security reader role is the most appropriate for this scenario. The Security reader role is designed to provide read-only access to security-related information in the Microsoft 365 compliance center. This includes the ability to view DLP alerts and other security-related reports.
The Compliance data administrator role is not appropriate for this scenario as it provides full access to all compliance-related features and functions in the compliance center, which is more than what is needed for just viewing DLP alerts.
The Security operator role is designed for users who need to perform security-related tasks, such as investigating security incidents and managing security alerts. This role is also more than what is needed for just viewing DLP alerts.
The Compliance administrator role is designed for users who need to manage compliance-related functions, such as creating policies and managing retention labels. This role is also more than what is needed for just viewing DLP alerts.
Therefore, the most appropriate role for the user to view DLP alerts in the Microsoft 365 compliance center is the Security reader role.