Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
If you want users to use any Data Security Investigations (preview) capabilities and features in the Microsoft Purview portal, you must assign users the appropriate permissions.
This article describes the permissions required to perform specific Data Security Investigations (preview) tasks. For more information about Microsoft Purview role groups and permissions, see Permissions in the Microsoft Purview portal.
Roles and role groups
Important
After you configure your role groups, it might take up to 30 minutes for the role group permissions to apply to assigned users across your organization.
The easiest way to quickly assign the Administrator or Investigator roles to users when getting started is to use the Assign roles to your team members setup task. Complete the following steps to assign these roles:
- Go to the Microsoft Purview portal with account with the Global Administrator roles assigned.
- Select the Data Security Investigations (preview) solution card and then select Overview in the left nav.
- Select Assign roles to your team members in the Setup tasks section.
- On the Role assignment flyout pane, select users in the Administrators field.
- Select users in the Investigators field.
- Select Confirm to assign users these roles.
You can also add users to appropriate role group on the Role groups page in the Microsoft Purview portal. To continue with these configuration steps in the Microsoft Purview portal, you must be assigned to the Data Security Investigations Admins role group.
Configure permissions
Depending on how you want to manage Data Security Investigations (preview) workflow and investigations, you need to assign users to specific role groups to manage different sets of Data Security Investigations (preview) features. You have the option of assigning users with different security responsibilities to specific role groups to manage different areas of Data Security Investigations (preview) features. Or you might decide to assign all user accounts for designated administrators, investigators, and reviewers to the Data Security Investigations Administrators role group. Use a single role group or multiple role groups to best fit your security management requirements.
Tip
Make sure you always have at least one user in the Data Security Investigations Administrators role group so that your Data Security Investigations (preview) configuration doesn't get in to a 'zero administrator' scenario if specific users leave your organization.
Choose from these solution role group options when configuring and managing Data Security Investigations (preview):
| Actions | Data Security Investigations Administrators | Data Security Investigations Investigators | Data Security Investigations Reviewers |
|---|---|---|---|
| Create and manage all investigations | Yes | No | No |
| Create and manage assigned investigations | Yes | Yes | No |
| Create searches and add items to an investigation | Yes | Yes | No |
| Estimate and preview search results | Yes | Yes | No |
| Manage investigation scope | Yes | Yes | Yes |
| Run vector searches | Yes | Yes | Yes |
| Run categorization activities | Yes | Yes | Yes |
| Run examination activities | Yes | Yes | Yes |
| Add, delete, manage items for a mitigation plan | Yes | Yes | Yes |
Important
Global admins must be assigned to one of the listed role groups for Data Security Investigations (preview) to create and access investigations.
Option 1: Assign multiple users to the Data Security Investigations Administrators role group
Complete the following steps to assign multiple users administrative access and responsibilities to Data Security Investigations (preview) in your organization.
- Sign in to the Microsoft Purview portal using credentials for an admin account in your Microsoft 365 organization.
- Select Settings in the upper-right corner of the page, select Roles and groups, then select Role groups in the left navigation pane.
- Select the Data Security Investigations Administrators role group, and then select Edit.
- Select Choose users, and then select the checkboxes for all the users you want to add to the role group.
- Choose Select, and then select Next.
- Select Save to add the users to the role group, and then select Done.
Option 2: Assign users to specific Data Security Investigations (preview) role groups
Complete the following steps to assign users to specific role groups to segment Data Security Investigations (preview) access and responsibilities among different users in your organization.
- Sign in to the Microsoft Purview portal using credentials for an admin account in your Microsoft 365 organization.
- Select Settings in the upper-right corner of the page, then select Role groups in the left navigation pane.
- Select one of the Data Security Investigations (preview) role groups, and then select Edit.
- Select Choose users, and then select the checkboxes for all the users you want to add to the role group.
- Choose Select, and then select Next.
- Select Save to add the users to the role group.
- Select the next Data Security Investigations (preview) role group, and then repeat the previous steps for each required role group.
- Select Close when you're done.