Roles allow you define what a user can manage and what data they can view. Permissions are granted to the role, and then the user is assigned to the role.
From Change Guardian main, click Users in the toolbar.
Select a tenant from the Tenants list to assign a tenant to the role.
Users created under this role will have access to view events from the selected tenant.
Click Create in the Roles section to create a new role.
Use the following information to create the role:
Role name: Specify a unique name for the role. A role name should not exceed 40 characters.
Description: Specify a description of the role.
Users with this role can: Select the permissions that a role grants to users assigned to the role.
View all event data: Select this option to allow users to view all the data in the Change Guardian system. If you select this option, you must select one or more of the following permissions:
View the following data: Select this option to allow users to view only selected data in the Change Guardian system.
Only events matching the criteria: Allows users to view only the events returned by the specified search query. For example, if you set the filter value to sev:5, users with this permission can view only events of severity five in a search.
Search Data Targets: When this permission is set on a role, all members of that role can perform searches on Change Guardian systems that are in a distributed location.
View asset data: Allows users to view asset data.
View asset vulnerability data: Allows users to view vulnerability data.
View data in the embedded database: Allows users to view the data in the embedded database.
View people browser: Allows users to view the data in the Identity Browser.
View system events: Allows users to view the Change Guardian system events.
Allow users to access reports: Select this option to allow users to access and manage reports.
Manage reports: Allows users to create, modify, run, and delete reports.
Run reports: Allows users to only run reports.
Allow users to manage alerts: Select this option to allow users to view and manage alerts. Select either of the following options:
Manage all alerts: Allows the users to view and edit all the alerts and configure alert creation.
Manage only alerts that match the following criteria: Allows the users to view and edit the alerts that match the specified criteria. This permission also allows the role to configure alert creation.
Sharing: Allows users in the role to share real-time views, filters, and reports with other users.
Miscellaneous: Assign miscellaneous permissions as necessary:
Edit knowledge base: Allows users to view and edit the knowledge base in the Alert Details page.
Manage Tags: When this permission is set on a role, all members of this role can create, delete, and modify tags, and associate tags to different event sources.
Manage roles and users: Allows non-administrator users to administer specific roles and users.
Send Events and Attachments: Allows users to send events and attachments to the server.
NOTE:You must manually assign this permission to a user who needs to forward events to the server.
Proxy for Authorized Data Requestors: When this permission is set on a role, the members of this role can accept searches from remote data sources.
View and execute event actions: When this permission is set on a role, all members of this role can view events and execute actions on the selected events.
View detailed internal system state data: When this permission is set on a role, all members of this role can view detailed internal system state data by using a JMX client.
View knowledge base: Allows users to view the knowledge base in the Alert Details page.
Click Save.
To create users for this role, see Creating Users.