Dec 06 2017 05:49 PM
Dec 06 2017 05:49 PM
Is there a way to restrict who can access ATP? I am just onboarding and I've found any user can access it - which could be a bit of a problem.
Dec 11 2017 08:35 AM
Dec 11 2017 02:21 PM
Dec 11 2017 03:08 PM - edited Dec 11 2017 03:09 PM
SolutionAzure ATP creates three AAD groups which you can use to provide access to each Azure ATP workspace you create: They are named Azure ATP <WorkspaceName> Administrators; Azure ATP <WorkspaceName> Users and Azure ATP <WorkspaceName> Viewers. Details on what each group can access can be found here: https://docs.microsoft.com/en-us/advanced-threat-analytics/ata-role-groups
Adding users to these AAD groups will give them access to an individual workspace (they will need to use the full workspace URL).
Only Global Administrators and Security administrators can access the Workspace management portal at https://portal.atp.azure.com
Dec 12 2017 12:36 AM
Dec 11 2017 03:08 PM - edited Dec 11 2017 03:09 PM
SolutionAzure ATP creates three AAD groups which you can use to provide access to each Azure ATP workspace you create: They are named Azure ATP <WorkspaceName> Administrators; Azure ATP <WorkspaceName> Users and Azure ATP <WorkspaceName> Viewers. Details on what each group can access can be found here: https://docs.microsoft.com/en-us/advanced-threat-analytics/ata-role-groups
Adding users to these AAD groups will give them access to an individual workspace (they will need to use the full workspace URL).
Only Global Administrators and Security administrators can access the Workspace management portal at https://portal.atp.azure.com