![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 54%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHA%3C/text%3E%3C/svg%3E)
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,065 questions
Thank you for posting your query on Microsoft Q&A, from above description I could understand that your admin is not able to edit the Threat Intelligence connector though recommended roles have been assigned.
Please do correct me if this is not the case by responding in the comments section:
As per Connect your threat intelligence platform Prerequisites
- In order to install, update and delete standalone content or solutions in content hub, you need the Microsoft Sentinel Contributor role at the resource group level.
- You must have either the Global administrator or Security administrator Microsoft Entra roles in order to grant permissions to your TIP product or to any other custom application that uses direct integration with the Microsoft Graph Security tiIndicators API.
- You must have read and write permissions to the Microsoft Sentinel workspace to store your threat indicators.
Still if the issue persist then:
- Kindly share the screenshot of error which admin is getting while trying edit the connector.
- Browser trace while trying reproduce the issue.
- Also share the screenshot of roles assigned to the admin.
Thanks,
Akshay Kaushik
Please "Accept the answer" (Yes), and share your feedback if the suggestion answers you’re your query. This will help us and others in the community as well.