Forum Discussion
pwahlmueller
Apr 08, 2024MVP
Defender for Endpoint permission for part of Devices
An automation should be able to flag all windows 10 machines in defender for endpoint (only some selected should be flagged, depending on "things")
As it is an automation, we use app registration f...
pwahlmueller
Jun 10, 2024MVP
Hi DylanInfosec ,
Thanks - and yes you can do that in the script.
I wanted to know, if I can give permission to the app registration, so there is only the permission to change allowed maschines.
I think this is not possible.
Thanks - and yes you can do that in the script.
I wanted to know, if I can give permission to the app registration, so there is only the permission to change allowed maschines.
I think this is not possible.
DylanInfosec
Jun 10, 2024Brass Contributor
I see. Yeah that’d be interesting, almost like a per-object access.
TBH the coffee isn’t brewed yet but thinking out loud. Could you create an identity just for this task that has access to only a specific Device Group that contains the desired devices?? Then for the automation use this identity with delegated access?
TBH the coffee isn’t brewed yet but thinking out loud. Could you create an identity just for this task that has access to only a specific Device Group that contains the desired devices?? Then for the automation use this identity with delegated access?