Correct Answer: C
The least privileged role with permission to enable Customer Lockbox for your organization is the Customer LockBox access approver-role.
You can enable Customer Lockbox in the Office 365 admin center, Settings, Org Settings, Security and Privacy. Select Customer LockBox and choose “Edit”:
Option A is incorrect. The Global Administrator is allowed to turn on Customer LockBox, but it is not the least privileged alternative.
Option B is incorrect. Security Admin does not have permission to turn on Customer LockBox.
Option D is incorrect. Privileged role administrator does not have permission to turn on Customer LockBox.
Reference:
To know more about turning on Customer Lockbox, please refer to the link below:
https://docs.microsoft.com/en-us/microsoft-365/compliance/customer-lockbox-requests?view=o365-worldwide