权限&的先决条件 - 威胁和漏洞管理Prerequisites & permissions - threat and vulnerability management

适用于:Applies to:

想要体验 Microsoft Defender for Endpoint?Want to experience Microsoft Defender for Endpoint? 注册免费试用版。Sign up for a free trial.

确保你的设备:Ensure that your devices:

  • 已载入到 Microsoft Defender for EndpointAre onboarded to Microsoft Defender for Endpoint
  • 运行 支持的操作系统和平台Run supported operating systems and platforms
  • 在网络中安装并部署以下强制更新,以提高漏洞评估检测速率:Have the following mandatory updates installed and deployed in your network to boost your vulnerability assessment detection rates:
发布Release 安全更新 KB 编号和链接Security update KB number and link
Windows 10 版本 1709Windows 10 Version 1709 KB4493441 和 KB 4516071KB4493441 and KB 4516071
Windows 10 版本 1803Windows 10 Version 1803 KB4493464KB 4516045KB4493464 and KB 4516045
Windows 10 版本 1809Windows 10 Version 1809 KB 4516077KB 4516077
Windows 10 版本 1903Windows 10 Version 1903 KB 4512941KB 4512941
  • 已载入到 Microsoft IntuneMicrosoft Endpoint Configuration Manager, 以帮助修正威胁和漏洞管理发现的威胁。Are onboarded to Microsoft Intune and Microsoft Endpoint Configuration Manager to help remediate threats found by threat and vulnerability management. 如果你使用的是 Configuration Manager,请更新控制台到最新版本。If you're using Configuration Manager, update your console to the latest version.
    • 注意:如果启用了 Intune 连接,则创建修正请求时可以选择创建 Intune 安全任务。Note: If you have the Intune connection enabled, you get an option to create an Intune security task when creating a remediation request. 如果未设置连接,则不显示此选项。This option does not appear if the connection is not set.
  • 具有至少一个可在设备页面中查看的安全建议Have at least one security recommendation that can be viewed in the device page
  • 已标记或标记为共同管理Are tagged or marked as co-managed

相关权限选项Relevant permission options

  1. 使用分配有安全管理员或全局管理员角色的帐户登录到 Microsoft Defender 安全中心。Log in to Microsoft Defender Security Center using account with a Security administrator or Global administrator role assigned.
  2. 在导航窗格中,选择"设置 >角色"。In the navigation pane, select Settings > Roles.

有关详细信息,请参阅为基于角色 的访问控制创建和管理角色For more information, see Create and manage roles for role-based access control

查看数据View data

  • 安全操作 - 在门户中查看所有安全操作数据Security operations - View all security operations data in the portal
  • 威胁和漏洞管理 - 在门户中查看威胁和漏洞管理数据Threat and vulnerability management - View threat and vulnerability management data in the portal

活动修正操作Active remediation actions

  • 安全操作 - 执行响应操作、批准或消除挂起的修正操作、管理自动化和指示器的允许/阻止列表Security operations - Take response actions, approve or dismiss pending remediation actions, manage allowed/blocked lists for automation and indicators
  • 威胁和漏洞管理 - 异常处理 - 创建新的异常并管理活动异常Threat and vulnerability management - Exception handling - Create new exceptions and manage active exceptions
  • 威胁和漏洞管理 - 修正处理 - 提交新的修正请求、创建票证和管理现有修正活动Threat and vulnerability management - Remediation handling - Submit new remediation requests, create tickets, and manage existing remediation activities

有关详细信息,请参阅 RBAC 权限选项For more information, see RBAC permission options