向用户授予对安全与合规中心的访问权限Give users access to the Security & Compliance Center

重要

欢迎使用 Microsoft Defender for Office 365 ,这是 Office 365 高级威胁防护 的新名称。Welcome to Microsoft Defender for Office 365 , the new name for Office 365 Advanced Threat Protection. 有关此内容和其他更新的详细信息,请参阅 Microsoft 提供统一的 SIEM 和 XDR 以实现安全操作现代化Read more about this and other updates in Microsoft delivers unified SIEM and XDR to modernize security operations.

用户需要在安全 & 合规性中心中分配权限,然后才能管理其任何安全性或合规性功能。Users need to be assigned permissions in the Security & Compliance Center before they can manage any of its security or compliance features. 作为 Security & 合规中心中的 OrganizationManagement 角色组的全局管理员或成员,您可以向用户授予这些权限。As a global admin or member of the OrganizationManagement role group in the Security & Compliance Center, you can give these permissions to users. 用户将只能管理你授权他们访问的安全或合规性功能。Users will only be able to manage the security or compliance features that you give them access to.

有关您可以向安全 & 合规中心中的用户授予的不同权限的详细信息,请查看 安全 & 合规性中心中的权限For more information about the different permissions you can give to users in the Security & Compliance Center, check out Permissions in the Security & Compliance Center.

开始前,有必要了解什么?What do you need to know before you begin?

  • 您必须是全局管理员,或者是 Security & 合规性中心中的 OrganizationManagement 角色组的成员,才能完成本文中的步骤。You need to be a global admin, or a member of the OrganizationManagement role group in the Security & Compliance Center, to complete the steps in this article.

  • Security & 合规中心的角色组可能与 Exchange Online 中的角色组具有相似的名称,但它们不是相同的。Role groups for the Security & Compliance Center might have similar names to the role groups in Exchange Online, but they're not the same.

  • 角色组成员身份不在 Exchange Online 与 Security & 合规性中心之间共享。Role group memberships aren't shared between Exchange Online and the Security & Compliance Center.

  • 委派访问权限 (通过代表 (AOBO 的管理) 合作伙伴。) 权限无法访问安全 & 合规性中心。Delegated Access Permission (DAP) partners with Administer On Behalf Of (AOBO) permissions can't access the Security & Compliance Center.

使用安全 & 合规性中心向另一个用户授予对安全 & 合规性中心的访问权限Use the Security & Compliance Center to give another user access to the Security & Compliance Center

  1. 在上打开 "安全 & 合规中心" https://protection.office.com ,然后转到 " 权限"。Open the Security & Compliance Center at https://protection.office.com and then go to Permissions. 若要直接转到 " 权限 " 选项卡,请打开 https://protection.office.com/permissionsTo go directly to the Permissions tab, open https://protection.office.com/permissions.

  2. 从角色组列表中,选择角色组,然后单击 " 编辑  编辑图标" From the list of role groups, choose the role group, and then click Edit Edit icon.

  3. 在 "成员" 下的角色组的 "属性" 页中,单击 "添加" "添加  " 图标, 然后选择要添加的用户的名称 (或用户) 。In the role group's properties page under Members, click AddAdd Icon and select the name of the user (or users) you want to add.

  4. 在选择了要添加到角色组的所有用户后,单击 "**添加 > ** ",然后单击 "确定"When you've selected all of the users you want to add to the role group, click add-> and then OK.

  5. 完成时,请单击“保存”****。When you're finished, click Save.

使用安全 & 合规性中心 PowerShell 向另一个用户授予对安全 & 合规性中心的访问权限Use Security & Compliance Center PowerShell to give another user access to the Security & Compliance Center

  1. 连接到安全与合规中心 PowerShellConnect to Security & Compliance Center PowerShell.

  2. 使用以下语法:Use the following syntax:

    Add-RoleGroupMember -Identity <RoleGroup> -Member <UserIdentity>
    
    - _Identity_ is the role group.
    - _Member_ is the user or universal security group (USG). You can specify only one member at a time.
    
    This example adds MatildaS to the Organization Management role group.
    
    ```PowerShell
    Add-RoleGroupMember -Identity "Organization Management" -Member MatildaS
    

有关语法和参数的详细信息,请参阅 外接程序 add-rolegroupmemberFor detailed syntax and parameter issues, see Add-RoleGroupMember

如何知道操作成功?How do you know this worked?

若要验证是否已成功授予对安全 & 合规中心的访问权限,请执行以下步骤之一:To verify that you've successfully granted access to the Security & Compliance Center, do either of the following steps:

  • 在安全 & 合规性中心中,转到 " 权限 ",然后选择角色组。In the Security & Compliance Center, go to Permissions and select the role group. 在打开的 "详细信息" 浮出控件中,验证角色组的成员。In the details flyout that opens, verify the members of the role group.

  • 在安全 & 合规性中心 PowerShell 中,将替换 <RoleGroupName> 为角色组的名称,然后运行以下命令:In Security & Compliance Center PowerShell, replace <RoleGroupName> with the name of the role group, and run the following command:

    Get-RoleGroupMember -Identity "<RoleGroupName>"
    

    有关语法和参数的详细信息,请参阅 add-rolegroupmemberFor detailed syntax and parameter information, see Get-RoleGroupMember.