Forum Discussion
Edit Policy Permission Issue in MDE Portal
Dear All, We are facing an issue with permission assignments in the MDE portal. We assigned the following permissions to the account (e.g., email address removed for privacy reasons): - MDE ...
I believe the Intune roles prevail from what is customized in MDE, as MDE specific/custom roles are limited for device grouping and what activities can be restricted within MDE (alerts, incidents, vuln mgmt, etc) [1]. Because the Intune policies are assigned from Intune, the Intune roles prevail. Recommend to allow 'Security Admin' which allows Read Only permission to all Intune, except admin rights to endpoint security node [2]
[1] https://learn.microsoft.com/en-us/defender-endpoint/user-roles
[2] https://learn.microsoft.com/en-us/mem/intune/fundamentals/role-based-access-control