This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 19%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
I have created a defender for EASM Instance but receive a "You do not have access" error code 403 when trying to access it after deployment. I have tried multiple times and waited days between attempts but the issue persists. I am a global admin. The error message I receive is:
ExtensionMicrosoft_Azure_EASM
- ContentOverview.ReactView
- Error code403
I have tried this on different tenants with the same result. What could be the issue? Please advise.
Best regards, Tobias
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
@TobiasL6952 Thank you for reaching out to us, As I understand you are trying to access newly created Defender EASM instance and getting 403 error.
Would request you to check if Owner or Contributor RBAC role either on the subscription or resource group level?
You don't need Azure AD roles (i.e. GA) to create, delete, and edit MDEASM resources and the inventory assets within it. They need RBAC role (IAM) - https://learn.microsoft.com/en-us/azure/external-attack-surface-management/#:~:text=new%20cloud%20resources.-,User%20permissions,-Users%20that%20have
Let me know if you have any further questions, feel free to post back.
Thanks that works!