权限Permissions

权限在 Azure 安全中心中的工作原理是什么?How do permissions work in Azure Security Center?

Azure 安全中心使用 Azure 基于角色的访问控制 (Azure RBAC) 提供可在 Azure 中分配给用户、组和服务的内置角色Azure Security Center uses Azure role-based access control (Azure RBAC), which provides built-in roles that can be assigned to users, groups, and services in Azure.

安全中心会评估资源的配置以识别安全问题和漏洞。Security Center assesses the configuration of your resources to identify security issues and vulnerabilities. 如果分配有资源所属的订阅或资源组的“所有者”、“参与者”或“读取者”角色,则仅可在安全中心看到与资源相关的信息。In Security Center, you only see information related to a resource when you are assigned the role of Owner, Contributor, or Reader for the subscription or resource group that a resource belongs to.

若要深入了解安全中心中的角色和允许的操作,请参阅 Azure 安全中心中的权限See Permissions in Azure Security Center to learn more about roles and allowed actions in Security Center.

哪些用户可以修改安全策略?Who can modify a security policy?

只有安全管理员或者订阅的所有者或参与者才能修改安全策略。To modify a security policy, you must be a Security Admin or an Owner or Contributor of that subscription.

若要了解如何配置安全策略,请参阅在 Azure 安全中心设置安全策略To learn how to configure a security policy, see Setting security policies in Azure Security Center.