Roles para configurar conector Threat Intelligence


Buenos Dias

Agradezco de su apoyo con la información de que permisos se deben tener para poder editar el conector Threat Intelligence, se tiene el rol que indica la documentación pero no se habilita la opción para editar el conector

Microsoft Sentinel
Microsoft Sentinel
A scalable, cloud-native solution for security information event management and security orchestration automated response. Previously known as Azure Sentinel.
1,030 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Akshay-MSFT 17,256 Reputation points Microsoft Employee


    Thank you for posting your query on Microsoft Q&A, from above description I could understand that your admin is not able to edit the Threat Intelligence connector though recommended roles have been assigned.

    Please do correct me if this is not the case by responding in the comments section:

    As per Connect your threat intelligence platform Prerequisites

    • In order to install, update and delete standalone content or solutions in content hub, you need the Microsoft Sentinel Contributor role at the resource group level.
    • You must have either the Global administrator or Security administrator Microsoft Entra roles in order to grant permissions to your TIP product or to any other custom application that uses direct integration with the Microsoft Graph Security tiIndicators API.
    • You must have read and write permissions to the Microsoft Sentinel workspace to store your threat indicators.

    Still if the issue persist then:

    • Kindly share the screenshot of error which admin is getting while trying edit the connector.
    • Browser trace while trying reproduce the issue.
    • Also share the screenshot of roles assigned to the admin.


    Akshay Kaushik

    Please "Accept the answer" (Yes), and share your feedback if the suggestion answers you’re your query. This will help us and others in the community as well.