cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

This role group is not manageable through the administrator portals?

David Machula
Copper Contributor

‎Aug 13 2018 03:43 PM - last edited on ‎Feb 01 2023 11:17 AM by

‎Aug 13 2018 03:43 PM - last edited on ‎Feb 01 2023 11:17 AM by

This role group is not manageable through the administrator portals?

My objective is to add members to Security and Compliance center role groups and delegate certain responsibilities (create and view reports, manage DLP, and so forth). First of all, concerning the Security Reader and Security Administrator role groups, I read: "This role group is not manageable through the administrator portals."

 

https://support.office.com/en-us/article/permissions-in-the-office-365-security-compliance-center-d1...

 

What does that mean?

 

I thought I would experiment regardless and made one user a member of the Security Reader role group. I was able to add that person and they are displayed as a member.

 

So how do they access the Security and Compliance center?

 

I naively thought that when they logon next there would be an icon for the Security & Compliance center among the icons for the other applications (with effective access limited to the scope of what Security Readers can see).

 

But I'm not (they're not) seeing any such icon...

 

???

 

Labels:
1,566 Views
0 Likes
2 Replies
Reply
2 Replies
Nestori Syynimaa

‎Aug 13 2018 10:44 PM

‎Aug 13 2018 10:44 PM

Re: This role group is not manageable through the administrator portals?

Your first point means that those groups has to be managed through Azure AD PowerShell.

 

With MSOnline PowerShell:

Add-MsolRoleMember -RoleName "Security Administrator" -RoleMemberEmailAddress user@domain.com

 

Apparently, for some reason, the person added to Security Administrator role group will have access to Admin center, but there is no link to Security and Compliance center. Just ask users to browse directly to https://protection.office.com 

0 Likes
Reply
Vasil Michev

‎Aug 13 2018 10:58 PM

‎Aug 13 2018 10:58 PM

Re: This role group is not manageable through the administrator portals?

Well, it's the same situation as adding users to Role Groups in Exchange Online - they can get the relevant permissions and perform the designated tasks, however they don't get a link to the EAC in their launcher. So, they will have to access the EAC (or the SCC in your case) with the direct link. Or you can just create a custom tile.

0 Likes
Reply