You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: copilot/copilot-prompt-gallery.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -37,7 +37,7 @@ Each suggested prompt in the prompt Gallery includes additional information abou
37
37
38
38
Copilot Prompt Gallery processes and manages data in a structured manner to ensure compliance and security. The following are key data flows and compliance considerations:
39
39
40
-
:::image type="content" source="media/copilot-lab-tech-diagram.png" alt-text="Diagram showing the data flow for Copilot Prompt Gallery." lightbox="media/copilot-lab-tech-diagram.png":::
40
+
:::image type="content" source="media/copilot-prompt-gallery-diagram.png" alt-text="Diagram showing the data flow for Copilot Prompt Gallery." lightbox="media/copilot-prompt-gallery-diagram.png":::
41
41
42
42
- Copilot Prompt Gallery is both a website and a feature of Copilot that allows users to discover, manage, use, and share Copilot prompts.
43
43
- A user accesses Copilot Prompt Gallery, either via the Copilot Prompt Gallery website or in Copilot through an app.
Copy file name to clipboardExpand all lines: microsoft-365/admin/manage/manage-feedback-ms-org.md
+2-2Lines changed: 2 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ f1.keywords:
5
5
ms.author: kwekua
6
6
author: kwekuako
7
7
manager: scotv
8
-
ms.date: 10/21/2024
8
+
ms.date: 11/19/2024
9
9
audience: Admin
10
10
ms.topic: article
11
11
ms.service: microsoft-365-business
@@ -98,7 +98,7 @@ The following information only applies to United States government customers usi
98
98
### GCC environment
99
99
100
100
- Cloud Policy service for Microsoft 365 is available in this environment as of September 24, 2024.
101
-
- Not all products currently support feedback collection in this environment. We anticipate most products will support feedback collection by November 15, 2024. To prepare for this rollout, we recommend you review and configure the policy settings in the way that is appropriate for your organization.
101
+
- Not all products currently support feedback collection in this environment, but we're working to implement that support. To prepare for feedback collection, we recommend you review and configure the policy settings in the way that is appropriate for your organization.
102
102
- When the **Allow users to submit feedback to Microsoft** policy is set to **Not Configured** in this environment, it has the same effect as if you set the policy to **Disabled**.
103
103
- The Feedback portal and in-product surveys aren’t available in this environment, so setting these policies won’t have any effect at this time.
104
104
- The following policies are always treated as **Disabled** in this environment regardless of how you set the policies:
Copy file name to clipboardExpand all lines: microsoft-365/lighthouse/m365-lighthouse-overview-of-permissions.md
+57-55Lines changed: 57 additions & 55 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ ms.author: sharik
5
5
author: SKjerland
6
6
manager: scotv
7
7
ms.reviewer: taylorau
8
-
ms.date: 10/31/2024
8
+
ms.date: 11/19/2024
9
9
audience: Admin
10
10
ms.topic: concept-article
11
11
ms.service: microsoft-365-lighthouse
@@ -48,67 +48,69 @@ The following table provides an overview of each Lighthouse RBAC role. For a lis
48
48
| Lighthouse RBAC role | Overview |
49
49
|---|---|
50
50
| Account Manager | Account Managers have full access to Sales Advisor pages and data across the entire partner tenant.<br><br>Account Managers can export Sales Advisor data. |
51
-
| Administrator | Administrators have full administrative permissions in Lighthouse. <br><br>Administrators can manage RBAC and GDAP permissions and can create baselines, tags, and alerts.<br><br>Administrators are automatically assigned the Privileged Role Administrator, User Administrator, and Group Administrator roles in Microsoft Entra ID and the Admin Agent role in Partner Center. |
51
+
| Administrator | Administrators have full administrative permissions in Lighthouse. <br><br>Administrators can manage RBAC and GDAP permissions, view audit logs, and create baselines, tags, and alerts.<br><br>Administrators are automatically assigned the Privileged Role Administrator, User Administrator, and Group Administrator roles in Microsoft Entra ID and the Admin Agent role in Partner Center. |
52
+
| Author | Authors can manage tenants, tags, alert rules, and baselines to deploy tenant configurations. |
52
53
| Operator | Operators manage customer tenants in Lighthouse based on the GDAP permissions assigned to them for each customer tenant that they manage.<br><br>Operators can view high-level customer tenant status and manage alerts.<br><br>Lighthouse users who hold at least one Microsoft Entra role are automatically assigned the Operator role.<br><br>**Note:** Lighthouse Administrators can use templates on the **Delegated access** page to assign GDAP permissions to Lighthouse users. |
53
54
| Reader | Readers have read-only access to data in Lighthouse.<br><br>Lighthouse Readers can view high-level customer tenant status and alerts. |
54
55
55
56
## Lighthouse RBAC roles and capabilities
56
57
57
58
The following table describes the actions that each Lighthouse RBAC role can perform in Lighthouse. For some actions, you need to hold a Microsoft Entra role in addition to a Lighthouse RBAC role. For other actions, only a Microsoft Entra role is required. Microsoft Entra role requirements are indicated in the last column of the table. For a complete list of Microsoft Entra roles and the actions they can perform, see [Microsoft Entra built-in roles](/azure/active-directory/roles/permissions-reference).
58
59
59
-
| Area | Actions | Account Manager | Administrator | Operator | Reader | Need Microsoft Entra role? |
60
-
|---|---|:---:|:---:|:---:|:---:|:---:|
61
-
|**Home page**| View data on cards ||||| Yes |
62
-
|| Add users ||||| Yes |
63
-
|| Reset password ||||| Yes |
64
-
|| Offboard users ||||| Yes |
65
-
|**Alerts**| View alerts and alert rules |✓|✓||✓| No |
66
-
|| Manage alerts (change severity, status, or assignment) ||✓||| No |
67
-
|| Create, edit, and delete alert rules ||✓||| No |
68
-
|**Copilot insights**| View opportunities and adoption data ||||| Yes|
69
-
|**Tenants**| View the **Tenants** page |✓|✓|✓|✓| No |
70
-
|| View tenant details ||||| Yes |
71
-
|| Export data |✓|✓|✓|✓| No |
72
-
|| View tags |✓|✓|✓|✓| No |
73
-
|| Create, update, and delete tags in Lighthouse ||✓||| No |
74
-
|| Assign and remove tags from tenants ||✓||| No |
75
-
|| Activate and inactivate a tenant ||✓||| No |
76
-
|| View delegated access status |✓|✓|✓|✓| No |
77
-
|| View Microsoft Secure Score ||||| Yes |
78
-
|| View baseline assignments |✓|✓|✓|✓| No |
79
-
|| View deployment status |||✓|| Yes |
80
-
|| View apps and services usage |||✓|| Yes |
81
-
|| View and edit customer contact and website info |✓|✓|✓|✓| No |
82
-
|**Users**| Search for users ||||| Yes |
83
-
|| View user metrics ||||| Yes |
84
-
|| Onboard new users ||||| Yes |
85
-
|| Offboard users ||||| Yes |
86
-
|| View inactive users ||||| Yes |
87
-
|| View shared mailboxes ||||| Yes |
88
-
|| View and manage risky users ||||| Yes |
89
-
|| View and manage multifactor authentication ||||| Yes |
90
-
|| View and manage self-service password reset ||||| Yes |
91
-
|**Devices**| View device security data ||||| Yes |
92
-
|| View vulnerability management data ||||| Yes |
93
-
|| View device compliance data ||||| Yes |
94
-
|| View threat management data ||||| Yes |
95
-
|| View device health data ||||| Yes |
96
-
|| View Windows 365 data ||||| Yes |
97
-
|| View Windows event logs ||||| Yes |
98
-
|**Apps**| View app performance and app management data ||||| Yes |
99
-
|**Quarantined messages**| View and manage quarantined messages ||||| Yes |
100
-
|**Baselines**| View baselines (default, custom) and task details ||✓|✓|✓| No|
101
-
|| Create, clone, edit, and assign baselines ||✓||| No |
102
-
|| View deployment insights ||||| Yes |
103
-
|**Service health**| Monitor service health<sup>1</sup> ||||| No |
104
-
|**Support**| Create and manage service requests<sup>2</sup> ||||| No |
|**Permissions**| View the **Lighthouse Permissions** page ||✓|||| No |
109
+
|| Set up and manage Lighthouse permissions ||✓|||| No |
110
+
|| View, set up, and manage GDAP on the **Delegated access** page ||✓|||| No |
111
+
|**Sales Advisor**| View opportunities |✓|✓|||| No |
112
+
|| View subscription renewals |✓|✓|||| No |
113
+
|| View license requests |✓|✓|||| No |
112
114
113
115
<sup>1</sup> To monitor service health, Lighthouse users must hold at least one Microsoft Entra role in the partner tenant with the following property set: **microsoft.office365.serviceHealth/allEntities/allTasks**. The users must also have at least the Admin Agent role or Helpdesk Agent role assigned to them in Partner Center.
Copy file name to clipboardExpand all lines: microsoft-365/lighthouse/m365-lighthouse-whats-new.md
+27-1Lines changed: 27 additions & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ ms.author: sharik
5
5
author: SKjerland
6
6
manager: scotv
7
7
ms.reviewer: sharonchoi
8
-
ms.date: 10/07/2024
8
+
ms.date: 11/19/2024
9
9
audience: Admin
10
10
ms.topic: whats-new
11
11
ms.service: microsoft-365-lighthouse
@@ -32,6 +32,32 @@ We're continuously adding new features to [Microsoft 365 Lighthouse](m365-lighth
32
32
>
33
33
> To see which new features are currently available in your partner tenant, go to the **Home** page of Microsoft 365 Lighthouse, and then either select the **What's new** link in the upper-right corner of the page or select **What's new** on the **What's new & learning resources** card.
34
34
35
+
## November 2024
36
+
37
+
### New Lighthouse RBAC roles to manage partner tenant permissions
38
+
39
+
Microsoft 365 Lighthouse now includes the following role-based access control (RBAC) roles that you can use to manage partner tenant permissions in Lighthouse. To assign these roles, you must be a Lighthouse Administrator or a Privileged Role Administrator in Microsoft Entra ID in the partner tenant.
40
+
41
+
- Lighthouse Account Manager
42
+
- Lighthouse Administrator
43
+
- Lighthouse Author
44
+
- Lighthouse Operator (automatically assigned to users with GDAP permissions for a customer tenant)
45
+
- Lighthouse Reader
46
+
47
+
Each role has a set of permissions that determines which data users can access and change within the partner tenant. For example, you can assign the Lighthouse Account Manager role to users who require access to Sales Advisor.
48
+
49
+
To assign RBAC roles, in the left navigation pane in Lighthouse, select **Permissions** > **Lighthouse permissions**.
50
+
51
+
[Go to the Lighthouse permissions page now](https://lighthouse.microsoft.com/#view/Microsoft_Intune_MTM/RBAC.ReactView)
52
+
53
+
To learn more, see [Overview of permissions in Microsoft 365 Lighthouse](m365-lighthouse-overview-of-permissions.md).
54
+
55
+
## October 2024
56
+
57
+
### Easily access tenant details from any page in Lighthouse
58
+
59
+
We've made it easy for you to access customer tenant details from any page in Lighthouse. Previously, you had to go to the **Tenants** page and then select a tenant from the list to view the details for that tenant. Now, when you select a tenant from the **Tenants** filter on any page, a link appears next to the filter that takes you directly to the details page for the selected tenant. This functionality helps you more efficiently manage your customer tenants by giving you one-click access to important tenant information no matter where you are in Lighthouse.
0 commit comments