MC481198 – Microsoft 365 Defender: new role-based access control (RBAC) in preview

Microsoft Exchange Logo

check before: 2022-12-21


Azure Active Directory, Defender, Defender for Endpoint, Defender for Identity, Defender for Office 365, Exchange, Microsoft 365 Defender


Online, World tenant


Change type:

New feature, Admin impact



The new RBAC enables security admins to centrally manage privileges across multiple security solutions within a single system with a greater efficiency, currently supporting Microsoft Defender for Endpoint, Microsoft Defender for Office 365, and Microsoft Defender for Identity. Supporting additional Microsoft 365 Defender products will follow in the future.
The new model is fully compatible with the existing individual RBAC models currently supported in Microsoft 365 Defender.
In the new model, permissions are grouped into pre-defined categories that are enforced consistently across the portal and public APIs. In addition, the new model offers greater control over permissions and assignments.
By default, custom roles created in the Microsoft 365 Defender RBAC model are scoped to all data sources. However, if needed, a role can be scoped to one or more specific data sources. Administrators can create and apply roles in the new model by defining new custom roles from scratch or by importing existing roles from the individual RBAC models.
The Microsoft 365 Defender security portal will continue to respect existing Azure Active Directory global roles.
The new RBAC model will continue to respect scoping based on device groups for Microsoft Defender for Endpoint.
For Microsoft Defender for Office, scenarios that adhere to Exchange Online roles are not impacted by this new model and will still be managed by Exchange Online in
Microsoft recommends that customers follow the least privileges principle when assigning permissions to users.
[When this will happen:]
Rollout will begin in mid-December 2022 and is expected to be completed by end of January 2023.

Change Category:


Release Phase:



the free basic plan is required to see all details. Sign up here

A plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to please choose a plan.

Last updated 2 months ago

Share to MS Teams

Login to your account

Welcome Back, We Missed You!