Microsoft Entra ID · Security & Compliance
Attack Payload Author
Creates attack payloads for security awareness training but cannot launch simulations. Payloads are available to all tenant admins.
Scope: Create phishing simulation payloads for security awareness training
Permissions
- Create attack payloads
- Manage attack payloads
- Read simulation reports (own simulations only)
- Read associated training reports
Common use cases
- Creating phishing templates
- Designing security awareness content
- Building training scenarios
Best practices
- Create realistic but safe payloads
- Test payloads before publishing
- Document payload purposes
Security considerations
- Cannot launch simulations (separation of duties)
- Payloads visible to all admins