Event details
I've read and heard that Microsoft employs strong security for customer tenant access by their engineers; when it comes to an MS engineer accessing a M365 Defender Portal:
Am i able to get more information on how these processes look, or the general steps an engineer takes to gain access (even at a high level). Such as JIT Access Request (Max 4 hours to tenant, with description why they need access and if there's been customer approval), secondary approval by a MS manager and post action reviews by a colleague or something similar?
Is there scenarios where a solo engineer can gain limited access to a customer tenant?
If this information is protected and requires an NDA, can i provide my business email as we have a signed NDA with Microsoft.
Ed Fisher
Microsoft
MicrosoftHi Toby
If you are working with a Microsoft Account Team, they can go into much more detail about this with you, but you can also start at https://learn.microsoft.com/en-us/microsoft-365/compliance/get-started-with-service-trust-portal?view=o365-worldwide to see how to access the Service Trust Portal, which has documentation on how the service is run, our commitments to our customers, audit results, and more. In short, there is NO standing access for anyone in Office 365 and procedures that protect customer data. Customer Lockbox can be used so that you can become part of the approval process before JIT is granted, if desired.