Forum Discussion
B2B user with Security Admin cannot access Defender for Office 365 threat policies
PhilostYes, we figured that workaround out as well, but for us it's a no-go. Being a member type user gives you access to all the customers' internal resource, i.e. Sharepoint. This is a privacy issue and makes this workaround off limits for us as an MSSP. We looked into locking down access via conditional access policies, but it's unmanageable.
We have a ticket running with Microsoft support on this issue, if a real solution comes from it, I'll update here.
Yeah, it works in our use case as we are multiple tenancies but the same organisation.
As you will already be aware, the root cause is the way Exchange Online Protection still relies on Exchange PowerShell and legacy Exchange Online permissions structure in general. An area/product group with whom it seems progress is challenging. I dare say lots of complexity. Doesn’t help the pure MSSP use case though…