Αυτό το πρόγραμμα περιήγησης δεν υποστηρίζεται πλέον.
Κάντε αναβάθμιση σε Microsoft Edge για να επωφεληθείτε από τις τελευταίες δυνατότητες, τις ενημερώσεις ασφαλείας και την τεχνική υποστήριξη.
Microsoft Defender for IoT uses Azure Role-Based Access Control (RBAC) to provide access to Defender for IoT monitoring services and data on the Azure portal.
The built-in Azure Security Reader, Security Admin, Contributor, and Owner roles are relevant for use in Defender for IoT.
This article provides a reference of Defender for IoT actions available for each role in the Azure portal. For more information, see Azure built-in roles.
Permissions are applied to user roles across an entire Azure subscription, or in some cases, across individual Defender for IoT sites. For more information, see Zero Trust and your OT networks and Manage site-based access control (Public preview).
| Action and scope | Security Reader | Security Admin | Contributor | Owner |
|---|---|---|---|---|
| Grant permissions to others Apply per subscription or site |
- | - | - | ✔ |
| Onboard OT or Enterprise IoT sensors Apply per subscription only |
- | ✔ | ✔ | ✔ |
| Download OT sensor software Apply per subscription only |
✔ | ✔ | ✔ | ✔ |
| Download sensor endpoint details Apply per subscription only |
✔ | ✔ | ✔ | ✔ |
| Download sensor activation files Apply per subscription only |
- | ✔ | ✔ | ✔ |
| View values on the Plans and pricing page Apply per subscription only |
✔ | ✔ | ✔ | ✔ |
| Modify values on the Plans and pricing page Apply per subscription only |
- | ✔ | ✔ | ✔ |
| View values on the Sites and sensors page Apply per subscription only |
✔ | ✔ | ✔ | ✔ |
| Modify values on the Sites and sensors page , including remote OT sensor updates Apply per subscription only |
- | ✔ | ✔ | ✔ |
| Recover OT sensor passwords Apply per subscription only |
- | ✔ | ✔ | ✔ |
| Download OT threat intelligence packages Apply per subscription only |
✔ | ✔ | ✔ | ✔ |
| Push OT threat intelligence updates Apply per subscription only |
- | ✔ | ✔ | ✔ |
| View Azure alerts Apply per subscription or site |
✔ | ✔ | ✔ | ✔ |
| Modify Azure alerts (write access - change status, learn, download PCAP, suppression rules) Apply per subscription or site |
- | ✔ | ✔ | ✔ |
| View Azure device inventory Apply per subscription or site |
✔ | ✔ | ✔ | ✔ |
| Manage Azure device inventory (write access) Apply per subscription or site |
- | ✔ | ✔ | ✔ |
| View Azure workbooks Apply per subscription or site |
✔ | ✔ | ✔ | ✔ |
| Manage Azure workbooks (write access) Apply per subscription or site |
- | ✔ | ✔ | ✔ |
| View Defender for IoT settings Apply per subscription |
✔ | ✔ | ✔ | ✔ |
| Configure Defender for IoT settings Apply per subscription |
- | ✔ | ✔ | ✔ |
For an overview on creating new Azure custom roles, see Azure custom roles. To set up a role, you need to add permissions from the actions listed in the Internet of Things security permissions table.
Σημαντικό
After adding a new subscription to Defender for IoT, the initial login for that subscription must be performed using either the Owner or Contributor roles. For all subsequent logins the Security Admin role is sufficient.
For more information, see:
Εκπαίδευση
Διαδρομή εκμάθησης
Deploy Microsoft Defender for IoT for OT monitoring - Training
Learn how to deploy Defender for IoT to discover and secure IoT and OT devices.
Πιστοποίηση
Microsoft Certified: Identity and Access Administrator Associate - Certifications
Demonstrate the features of Microsoft Entra ID to modernize identity solutions, implement hybrid solutions, and implement identity governance.
Τεκμηρίωση
Manage Azure users for Microsoft Defender for IoT - Microsoft Defender for IoT
Learn how to manage user permissions in the Azure portal for Microsoft Defender for IoT services.
User management for Microsoft Defender for IoT - Microsoft Defender for IoT
Learn about the different options for user and user role management for Microsoft Defender for IoT.
On-premises users and roles for Defender for IoT - Microsoft Defender for IoT
Learn about the on-premises user roles available for OT monitoring with Microsoft Defender for IoT network sensors.