Question 5 of 18
Your organization has a Microsoft 365 tenant with auditing enabled.
You've been asked to grant John Gruber the ability to review audit logs in your Microsoft 365 tenant. You give John Gruber the Global administrator role.
A few days later and learn John Gruber disabled auditing.
You re-enable auditing and then remove John Gruber's user account from the Global administrator role.
You need to give John Gruber the ability to review audit logs but he can't be given permission to disable auditing. Your organization adheres to the principle of least privilege.
Which role should you give to John Gruber?