必要條件 & 許可權-威脅與弱點管理Prerequisites & permissions - threat and vulnerability management

適用於:Applies to:

想要體驗適用於端點的 Microsoft Defender 嗎?Want to experience Microsoft Defender for Endpoint? 注册免費試用版。Sign up for a free trial.

確定您的裝置:Ensure that your devices:

  • 會架至 Microsoft Defender for EndpointAre onboarded to Microsoft Defender for Endpoint
  • 執行 支援的作業系統和平臺Run supported operating systems and platforms
  • 在您的網路中安裝並部署下列必要更新,以提升您的漏洞評估偵測速度:Have the following mandatory updates installed and deployed in your network to boost your vulnerability assessment detection rates:
發行Release 安全性更新 KB 編號及連結Security update KB number and link
Windows 10版本1709Windows 10 Version 1709 KB4493441KB 4516071KB4493441 and KB 4516071
Windows 10版本1803Windows 10 Version 1803 KB4493464KB 4516045KB4493464 and KB 4516045
Windows 10版本1809Windows 10 Version 1809 KB 4516077KB 4516077
Windows 10版本1903Windows 10 Version 1903 KB 4512941KB 4512941
  • 會架Microsoft IntuneMicrosoft Endpoint Configuration Manager ,以協助修正威脅與弱點管理所找到的威脅。Are onboarded to Microsoft Intune and Microsoft Endpoint Configuration Manager to help remediate threats found by threat and vulnerability management. 如果您使用的是 Configuration Manager,請將主控台更新為最新的版本。If you're using Configuration Manager, update your console to the latest version.
    • 附注:如果您已啟用 intune 連線,您可以在建立修復要求時,取得建立 intune 安全性工作的選項。Note: If you have the Intune connection enabled, you get an option to create an Intune security task when creating a remediation request. 如果未設定 connection,則不會顯示此選項。This option does not appear if the connection is not set.
  • 在 [裝置] 頁面中至少有一個可以查看的安全性建議Have at least one security recommendation that can be viewed in the device page
  • 已標記或標示為共同管理Are tagged or marked as co-managed

相關許可權選項Relevant permission options

  1. 使用已指派安全性管理員或全域系統管理員角色的帳戶登入 Microsoft Defender 資訊安全中心。Log in to Microsoft Defender Security Center using account with a Security administrator or Global administrator role assigned.
  2. 在功能窗格中,選取 [設定 > 角色]。In the navigation pane, select Settings > Roles.

如需詳細資訊,請參閱 建立及管理以角色為基礎的存取控制角色For more information, see Create and manage roles for role-based access control

查看資料View data

  • 安全性作業 -查看入口網站中的所有安全性作業資料Security operations - View all security operations data in the portal
  • 威脅及弱點管理-View 威脅與弱點管理入口網站中的資料Threat and vulnerability management - View threat and vulnerability management data in the portal

主動修正動作Active remediation actions

  • 安全性作業 -採取回應動作、核准或取消未決修正動作、管理允許/封鎖的自動化和指示器清單Security operations - Take response actions, approve or dismiss pending remediation actions, manage allowed/blocked lists for automation and indicators
  • 威脅及弱點管理例外 狀況-建立新的例外狀況及管理作用中的例外狀況Threat and vulnerability management - Exception handling - Create new exceptions and manage active exceptions
  • 威脅與弱點管理修正處理-提交新的修復要求、建立票證,以及管理現有的修復活動Threat and vulnerability management - Remediation handling - Submit new remediation requests, create tickets, and manage existing remediation activities

如需詳細資訊,請參閱 RBAC 許可權選項For more information, see RBAC permission options