Forum Discussion
Security Operator, but can add to TABL
According to the documentation you need to be a member in one of these role groups:
Exchange Online permissions:
1. Organization Management or Security Administrator2. Security Operator (Tenant AllowBlockList Manager)
Entra ID permissions:
Global Admin, Security Admin, Global Reader, Security Reader
https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/tenant-allow-block-list-email-spoof-configure?view=o365-worldwide
My impression here is that because of the unified RBAC model this role had to be modified to work.
Hope this helps.
G.
According to the documentation you need to be a member in one of these role groups:
Exchange Online permissions:
1. Organization Management or Security Administrator
2. Security Operator (Tenant AllowBlockList Manager)
Entra ID permissions:
Global Admin, Security Admin, Global Reader, Security Reader
https://learn.microsoft.com/en-us/microsoft-365/security/office-365-security/tenant-allow-block-list-email-spoof-configure?view=o365-worldwide
My impression here is that because of the unified RBAC model this role had to be modified to work.
Hope this helps.
G.
Thanks very much. I think that you are right and that the role was modified. It's strange that a Global Reader would be able to add items to the TABL, and I need to test this. As for Security Operator, I'm using the Entra ID role, but not the Exchange Online role.
I appreciate the help!
- Glad to help! Could ask a favor? If you feel this is the best answer, can you mark it as best answer?
- Sure. I did test the Entra Global Reader role, and it doesn't have the rights to manually add addresses to the TABL (which is as it should be.)