Microsoft 365 Security Administration — Question 69

You have a Microsoft 365 E5 subscription that contains a user named User1.
You need to ensure that User1 can use the Microsoft 365 compliance center to search audit logs and identify which users were added to Microsoft 365 role groups. The solution must use the principle of least privilege.
To which role group should you add User1?

Answer options

• A. View-Only Organization Management
• B. Security Reader
• C. Organization Management
• D. Compliance Management

Correct answer: D

Explanation

The correct answer is D, Compliance Management, as it grants the necessary permissions for User1 to access audit logs and manage compliance-related tasks. The other options either provide too many privileges, such as Organization Management, or do not offer the required access, like View-Only Organization Management and Security Reader.