Cortex XDR enables you to manage users in the Access Management console.
XDRlists all the users allocated to a specific Customer Support Portal (CSP) account and tenant. If a user is not listed, ensure that the user is added in the Customer Support Portal. The
Userstable provides different fields of information as detailed below. At the top of the page, you can perform the following actions.
- Import Multiple User Rolesas a CSV (Comma-separated values) file. This import can be used to quickly add users who already belong to a CSP account and assign them preexisting roles inCortexXDR. You can use theDownload example fileto view the required format of the CSV file to upload and replace the file contents with the data you want to upload, where the following columns must be included.
- User email—The email address of the user belonging to a CSP account that you want to import.
- Role Name—The name of the role that you want to assign to this user, where the role must already be created inCortexXDR.
- Is an account role (default=false)—A boolean value to define whether the user is designated with anXDR Account Adminrole in the Cortex Gateway. To define this in the CSV file, set the value toTRUE; otherwise, the value is set toFALSE(default).
- Show User Subsetto display only the users who are not designated as aHiddenuser (default).
- Search for something in the search box.
The following is a description of the different columns in the Users table.
Certain fields are exposed and hidden by default. An asterisk (*) is beside every field that is exposed by default.
- User Name*—Displays the first and last name of the user.
- Direct XDR Role*—Name of the role assigned specifically to the user that is not inherited from somewhere else, such a User Group. When the user does not have anyCortexXDRaccess permissions that are assigned specifically to them, the field displaysNo-Role.
- Groups*—Lists the groups that a user belongs to, where any group imported from Active Directory has the lettersADadded beside the group name.
- Group Roles*—Lists the different group roles based on the groups the user belongs to. When you hover over the group role, the group associated with this role is displayed.
- Endpoint Scope*—Displays the currently assigned Endpoint Scope for the user as eitherAll EndpointsorSpecific Groups.
- Last Login Time*—Last date and time the user accessed the tenant.
- Status*—Displays whether the user isActiveorInactive.
- First Name—Displays the first name of the user.
- Last Name—Displays the last name of the user.
You can also pivot (right-click) from rows and specific values in the table, where a number of different options are available to help you manage your
XDRusers from this page. You can perform these actions on one or more users at a time.
- Select.SettingsConfigurationsAccess ManagementUsersIn theUserspage, a number of different options are available to help you manage users.
- Manage yourCortexXDRusers.The following options are available to help you manage users, which you can perform on one or more users at a time.
- Update user role for users with an exiting role.
- You can either hover over the user name and select theUpdate User Roleicon ( ), located to the right of the row, or right-click the user name and selectUpdate User Role. You can also select more than one user to set and manage a role for all these system users belonging to the same group at once.
- Select aRolefrom the list of default and custom roles that you want to assign the user.
- Add a particular user to a group by selecting theUser Groupsfrom the list.
- Show Accumulated Permissionsfor the user(s) based on theRoleandUser Groupsassigned to the user(s). Role permissions are comprised of differentComponentspermissions. By defaultAllpermissions are displayed, which lists the combined permissions of everyRoleandUser Groupassigned to the user. You can also select the specific roles assigned to the user, which enables you to compare available permissions based on the roles selected. This can help you understand how the role permissions for a particular user are built. For example, if you need to isolate for a specific component, the permissions provided by a particularRoleorUser Group.
- Update User Roleto save your changes to the user role.
- Deactivate a user.Locate the user you want to deactivate, right-click, and selectDeactivate User.
- Remove a role assigned to a user.
- Locate the user you want to remove the role from, right-click, and selectRemove User Role.
- Designate a user as hidden.Locate the user you want to hide, right-click, and selectHide User. When a user is designated as hidden, the user will no longer be displayed in theUserstable when the table is configured toShow User Subset(default configuration). This is useful, for example, when you have users, who are not related toCortexXDRand will not be designated with aCortexXDRrole, such as CSP Super Users, and you want to hide them from the list.
- Delete a Single Sign-on (SSO) user.
- Locate the SSO user you want to delete, right-click, and selectDelete SSO User.
- Copy text to clipboardto copy text from a specific row field in the row of a user.
- Copy entire rowto copy the text from all the fields in a row of a user.
- Manage User Scope
Recommended For You
Recommended videos not found.