Merge branch 'public' into patch-5

MicrosoftDocs · Oct 7, 2024 · 359b426 · 359b426
2 parents d8e7730 + b804b3d
commit 359b426
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 3 deletions.
diff --git a/defender-xdr/mto-overview.md b/defender-xdr/mto-overview.md
@@ -13,7 +13,7 @@ ms.collection:
   - tier1
   - usx-security
 ms.topic: conceptual
-ms.date: 08/19/2024
+ms.date: 09/30/2024
 appliesto:
   - Microsoft Defender XDR
   - Microsoft Sentinel in the Microsoft Defender portal
@@ -37,6 +37,12 @@ For more information, see:
 - [Connect Microsoft Sentinel to Microsoft Defender XDR](microsoft-sentinel-onboard.md)
 - [Multitenant organizations documentation](/azure/active-directory/multi-tenant-organizations/)
 
+Multitenant management is also available to US government customers. Refer to the table below for specific scenarios for GCC, GCC High, DoD, and Commercial customers.
+
+| Scenario | Availability |
+| ------ | ------ |
+|Multitenant management | Available to all GCC, GCC High, DoD, and Commercial customers.|
+|Cross cloud collaboration| - Both DoD and GCC High customers can manage tenants in each other's clouds. </br></br> - GCC customers can manage tenants in the Commercial cloud. |
 
 ## Benefits of multitenant management
 
@@ -65,6 +71,9 @@ The following key capabilities are available for each tenant you have access to
 |**Endpoints** > **Vulnerability management** > **Tenants** |For all tenants and at a tenant-specific level, explore vulnerability management information across different values such as exposed devices, security recommendations, weaknesses, and critical CVEs. |
 |**Configuration** > **Settings**|Lists the tenants you have access to. Use this page to view and manage your tenants.|
 
+> [!NOTE]
+> The content distribution capability is not yet available for all GCC, GCC High, and DoD customers.
+
 ## Next steps
 
 - [Set up Microsoft Defender multitenant management](mto-requirements.md)
diff --git a/defender-xdr/mto-requirements.md b/defender-xdr/mto-requirements.md
@@ -28,7 +28,7 @@ This article describes the steps you need to take to start using multitenant man
 3. [Set up Microsoft Defender multitenant management](#set-up-multitenant-management)
 
 >[!Note]
->- In multi-tenant management, interactions between the multi-tenant user and the managed tenants could involve accessing data and managing configurations. The ability to undertake these actions is determined by the permissions a managed tenant has granted the multi-tenant user.
+>- In multitenant management, interactions between the multitenant user and the managed tenants could involve accessing data and managing configurations. The ability to undertake these actions is determined by the permissions a managed tenant has granted the multitenant user.
 >- [Data privacy](data-privacy.md), [role-based access control (RBAC)](m365d-permissions.md) and [Licensing](prerequisites.md#licensing-requirements) are respected by Microsoft Defender multi-tenant management.
 
 ## Review the requirements
@@ -38,6 +38,7 @@ The following table lists the basic requirements you need to use multitenant man
 | Requirement | Description |
 |:---|:---|
 | Microsoft Defender XDR prerequisites | Verify you meet the [Microsoft Defender XDR prerequisites](prerequisites.md)|
+| Microsoft Defender XDR for US Government customers | Check if you have the following applicable [licensing requirements](usgov.md#licensing-requirements)|
 | Multitenant access | To view and manage the data you have access to in multitenant management, you need to ensure you have the necessary access. For each tenant you want to view and manage, you need to have either: <br/> <br/> - [Granular delegated admin privileges (GDAP)](/partner-center/gdap-introduction) <br/> - [Microsoft Entra B2B authentication](/azure/active-directory/external-identities/what-is-b2b) <br/> <br/> To learn more about how to synchronize multiple B2B users across tenants, see [Configure cross-tenant synchronization](/azure/active-directory/multi-tenant-organizations/cross-tenant-synchronization-configure).|
 | Permissions | Users must be assigned the correct roles and permissions at the individual tenant level, in order to view and manage the associated data in multitenant management. To learn more, see: <br/><br/> - [Manage access to Microsoft Defender XDR with Microsoft Entra global roles](./m365d-permissions.md) <br/> - [Custom roles in role-based access control for Microsoft Defender XDR](./custom-roles.md)<br/><br/> To learn how to grant permissions for multiple users at scale, see [What is entitlement management](/azure/active-directory/governance/entitlement-management-overview).|
 | Security information and event management (SIEM) data (Optional) |To include SIEM data with the extended detection and response (XDR) data, one or more tenants must include a Microsoft Sentinel workspace onboarded to the Microsoft unified security operations platform. For more information, see [Connect Microsoft Sentinel to Microsoft Defender XDR](microsoft-sentinel-onboard.md).<br/><br/>Only one Microsoft Sentinel workspace per tenant is currently supported in the unified security operations platform. So in Microsoft Defender multitenant management, you have SIEM data from one Microsoft Sentinel workspace per tenant.<br/><br/> Access to Microsoft Sentinel data is available through [Microsoft Entra B2B authentication](/azure/active-directory/external-identities/what-is-b2b). Microsoft Sentinel doesn't support [granular delegated admin privileges (GDAP)](/partner-center/gdap-introduction) at this time. |
@@ -81,7 +82,7 @@ The first time you use Microsoft Defender multitenant management, you need setup
 3. Choose the tenants you want to manage and select **Add**
 
 >[!Note]
-> The Microsoft Defender multi-tenant view currently has a limit of 50 target tenants.
+> The Microsoft Defender multitenant view currently has a limit of 50 target tenants.
 
 The features available in multitenant management now appear on the navigation bar and you're ready to view and manage security data across all your tenants.