You have a Microsoft 365 subscription that contains an Azure AD tenant named contoso.com. The tenant includes a user named User1.
You enable Azure AD Identity Protection.
You need to ensure that User1 can review the list in Azure AD Identity Protection of users flagged for risk. The solution must use the principle of least privilege.
To which role should you add User1?
To ensure that User1 can review the list of users flagged for risk in Azure AD Identity Protection while adhering to the principle of least privilege, the role of Security Reader should be assigned. The Security Reader role has the necessary permissions to view security-related features, reports, and logs without the ability to make changes, aligning well with the requirement to review flagged users.
SECURITY READER IS CORRECT!!!!
https://www.examtopics.com/discussions/microsoft/view/49685-exam-ms-100-topic-3-question-29-discussion/
1 Global Admin 2 Security Admin 3 Security Reader Security reader is the least from the required role.
Require Role: 1 Global Admin 2 Security Admin 3 Security Reader available choice and least privilege is Security Reader
Very useful page / Least privileged roles by a task in Microsoft Entra ID = https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/delegate-by-task
The answer is correct, check this list : https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/delegate-by-task#security---users-flagged-for-risk
B is correct
The Reports Reader is least privileged and is able to access the sign-in reports, including privileged properties.
can access sign-in reports but not Entra ID Protection reports
B is correct
I think (Security Reader) is correct