Microsoft Secure Tech Accelerator
Apr 13 2023, 07:00 AM - 12:00 PM (PDT)
Microsoft Tech Community

Attribute based access control

Respected Contributor

Does anyone have any ideas about how the ABAC functionality could be leveraged for  a SOC team that is using Azure Sentinel?

1 Reply

@Dean Gross Haven't really thought it all through but I can see granting access to certain Azure Lighthouse groups for customer access based on attributes (not sure if that would be easier than granting access to the group or not)

 

You could also setup table level access control and use attributes to determine who can access that (I think): Manage access to Azure Sentinel data by resource | Microsoft Docs