Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
To enable users to access Data Security Investigations (preview) capabilities and features in the Microsoft Purview portal, assign users the appropriate permissions.
This article describes the permissions required to perform specific Data Security Investigations (preview) tasks. For more information about Microsoft Purview role groups and permissions, see Permissions in the Microsoft Purview portal.
Roles and role groups
Important
After you configure your role groups, it might take up to 30 minutes for the role group permissions to apply to assigned users across your organization.
To quickly assign the Administrator or Investigator roles to users, use the Assign roles to your team members setup task. Complete the following steps to assign these roles:
- Go to the Microsoft Purview portal with an account assigned the Global Administrator role.
- Select the Data Security Investigations (preview) solution card, then select Overview in the left nav.
- Select Assign roles to your team members in the Setup tasks section.
- Select users in the Administrators field on the Role assignment flyout pane.
- Select users in the Investigators field.
- Select Confirm to assign users these roles.
You can also add users to the appropriate role group on the Role groups page in the Microsoft Purview portal. To continue with these configuration steps in the Microsoft Purview portal, you must be assigned to the Data Security Investigations Admins role group.
Configure permissions
To manage Data Security Investigations (preview) workflow and investigations, assign users to specific role groups to manage different sets of Data Security Investigations (preview) features. You can assign users with different security responsibilities to specific role groups to manage different areas of Data Security Investigations (preview) features. Or, assign all user accounts for designated administrators, investigators, and reviewers to the Data Security Investigations Administrators role group. Use a single role group or multiple role groups to best fit your security management requirements.
Tip
Always have at least one user in the Data Security Investigations Administrators role group so that your Data Security Investigations (preview) configuration doesn't get in to a 'zero administrator' scenario if specific users leave your organization.
Choose from these solution role group options when configuring and managing Data Security Investigations (preview):
| Actions | Data Security Investigations Administrators | Data Security Investigations Investigators | Data Security Investigations Reviewers |
|---|---|---|---|
| Add, delete, manage items for a mitigation plan | Yes | Yes | Yes |
| Create and manage all investigations | Yes | No | No |
| Create and manage assigned investigations | Yes | Yes | No |
| Create searches and add items to an investigation | Yes | Yes | No |
| Estimate and preview search results | Yes | Yes | No |
| Manage investigation scope | Yes | Yes | Yes |
| Run categorization activities | Yes | Yes | Yes |
| Run examination activities | Yes | Yes | Yes |
| Run vector searches | Yes | Yes | Yes |
Important
Global admins must be assigned to one of the listed role groups for Data Security Investigations (preview) to create and access investigations.
Option 1: Assign multiple users to the Data Security Investigations Administrators role group
Complete these steps to give multiple users administrative access and responsibilities for Data Security Investigations (preview) in your organization.
- Sign in to the Microsoft Purview portal with an admin account in your Microsoft 365 organization.
- Select Settings in the upper-right corner of the page, select Roles and groups, then select Role groups in the left navigation pane.
- Select the Data Security Investigations Administrators role group, then select Edit.
- Select Choose users, then select the checkboxes for all the users you want to add to the role group.
- Select Select, then select Next.
- Select Save to add the users to the role group, then select Done.
Option 2: Assign users to specific Data Security Investigations (preview) role groups
Complete these steps to assign users to specific role groups to segment Data Security Investigations (preview) access and responsibilities among different users in your organization.
- Sign in to the Microsoft Purview portal with an admin account in your Microsoft 365 organization.
- Select Settings in the upper-right corner of the page, then select Role groups in the left navigation pane.
- Select one of the Data Security Investigations (preview) role groups, then select Edit.
- Select Choose users, then select the checkboxes for all the users you want to add to the role group.
- Select Select, then select Next.
- Select Save to add the users to the role group.
- Select the next Data Security Investigations (preview) role group, then repeat the previous steps for each required role group.
- Select Close when you're done.