{"id":192,"date":"2024-01-09T07:45:23","date_gmt":"2024-01-09T06:45:23","guid":{"rendered":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/?p=192"},"modified":"2024-01-09T07:45:23","modified_gmt":"2024-01-09T06:45:23","slug":"easily-manage-privileged-role-assignments-in-microsoft-entra-id-using-audit-logs","status":"publish","type":"post","link":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/2024\/01\/09\/easily-manage-privileged-role-assignments-in-microsoft-entra-id-using-audit-logs\/","title":{"rendered":"Easily Manage Privileged Role Assignments in Microsoft Entra ID Using Audit Logs"},"content":{"rendered":"<p><a href=\"https:\/\/techcommunity.microsoft.com\/t5\/microsoft-entra-blog\/easily-manage-privileged-role-assignments-in-microsoft-entra-id\/ba-p\/4013854\">Easily Manage Privileged Role Assignments in Microsoft Entra ID Using Audit Logs &#8211; Microsoft Community Hub<\/a><\/p>\n<p><span data-contrast=\"auto\">One of the best practices for securing your organization&#8217;s data is to follow the principle of least privilege, which means granting users the minimum level of permissions they need to perform their tasks. Microsoft Entra ID helps you apply this principle by offering a\u00a0<\/span><a href=\"https:\/\/learn.microsoft.com\/en-us\/entra\/identity\/role-based-access-control\/permissions-reference\" target=\"_blank\" rel=\"noopener noreferrer\"><span data-contrast=\"none\">wide range of built-in roles<\/span><\/a><span data-contrast=\"auto\">\u00a0as well as allowing you to create custom roles and assign them to users or groups based on their responsibilities and access needs. You can also use Entra ID to review and revoke any role assignments that are no longer needed or appropriate.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span data-contrast=\"auto\">It can be easy to lose track of role assignments if admin activities are not carefully audited and monitored. Routine checks of role assignments and generating alerts on new role assignments are one way to track and manage privileged role assignment.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span data-contrast=\"auto\">Chances are that when a user with privileged roles is approached, they\u2019ll say they need the role. This may be true; however, many times users will unknowingly say they need those permissions to carry out certain tasks when they could be assigned a role with lower permissions. For example, a user will be able to reset user passwords as a Global Administrator, but that does not mean they can\u2019t do that with another role with far less permissions.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Easily Manage Privileged Role Assignments in Microsoft Entra ID Using Audit Logs &#8211; Microsoft Community Hub One of the best practices for securing your organization&#8217;s data is to follow the principle of least privilege, which means granting users the minimum level of permissions they need to perform their tasks. Microsoft Entra ID helps you apply [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":193,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"pagelayer_contact_templates":[],"_pagelayer_content":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-192","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/posts\/192","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/comments?post=192"}],"version-history":[{"count":1,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/posts\/192\/revisions"}],"predecessor-version":[{"id":194,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/posts\/192\/revisions\/194"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/media\/193"}],"wp:attachment":[{"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/media?parent=192"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/categories?post=192"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ahehehinnou.fr\/M365SecurityCompliance\/wp-json\/wp\/v2\/tags?post=192"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}