Manage Users
Cortex XDR enables you to manage users in the Access
Management console.
In
the
Users
page, Cortex
XDR
lists all the users allocated to a specific Customer
Support Portal (CSP) account and tenant. If a user is not listed,
ensure that the user is added in the Customer Support Portal.
The Users
table provides different fields
of information as detailed below. At the top of the page, you can
perform the following actions.- Import Multiple User Rolesas a CSV (Comma-separated values) file. This import can be used to quickly add users who already belong to a CSP account and assign them preexisting roles inCortexXDR. You can use theDownload example fileto view the required format of the CSV file to upload and replace the file contents with the data you want to upload, where the following columns must be included.
- User email—The email address of the user belonging to a CSP account that you want to import.
- Role Name—The name of the role that you want to assign to this user, where the role must already be created inCortexXDR.
- Is an account role (default=false)—A boolean value to define whether the user is designated with anXDR Account Adminrole in the Cortex Gateway. To define this in the CSV file, set the value toTRUE; otherwise, the value is set toFALSE(default).
- Show User Subsetto display only the users who are not designated as aHiddenuser (default).
- Search for something in the search box.
The
following is a description of the different columns in the Users
table.
Certain fields are exposed and hidden by default.
An asterisk (*) is beside every field that is exposed by default.
- User Name*—Displays the first and last name of the user.
- Email*—Email address of the user.
- User Type*—Indicates whether the user was defined inCortexXDRusing theCSP(Customer Support Portal),SSO(single sign-on) using your organization’s IdP, or bothCSP/SSO.
- Direct XDR Role*—Name of the role assigned specifically to the user that is not inherited from somewhere else, such a User Group. When the user does not have anyCortexXDRaccess permissions that are assigned specifically to them, the field displaysNo-Role.
- Groups*—Lists the groups that a user belongs to, where any group imported from Active Directory has the lettersADadded beside the group name.
- Group Roles*—Lists the different group roles based on the groups the user belongs to. When you hover over the group role, the group associated with this role is displayed.
- Endpoint Scope*—Displays the currently assigned Endpoint Scope for the user as eitherAll EndpointsorSpecific Groups.
- Last Login Time*—Last date and time the user accessed the tenant.
- Status*—Displays whether the user isActiveorInactive.
- First Name—Displays the first name of the user.
- Last Name—Displays the last name of the user.
You can also pivot (right-click)
from rows and specific values in the table, where a number of different
options are available to help you manage your
Cortex
XDR
users from this page. You can perform
these actions on one or more users at a time.- Select .In theUserspage, a number of different options are available to help you manage users.
- Manage yourCortexXDRusers.The following options are available to help you manage users, which you can perform on one or more users at a time.
- Update user role for users with an exiting role.
- You can either hover over the user name and select theUpdate User Roleicon (
), located
to the right of the row, or right-click the user name and select Update User Role. You can also select more than one user to set and manage a role for all these system users belonging to the same group at once. - Select aRolefrom the list of default and custom roles that you want to assign the user.For a user with anXDR Account Adminrole, you can only degregate their role using the Cortex Gateway.
- Add a particular user to a group by selecting theUser Groupsfrom the list.
- Show Accumulated Permissionsfor the user(s) based on theRoleandUser Groupsassigned to the user(s). Role permissions are comprised of differentComponentspermissions. By defaultAllpermissions are displayed, which lists the combined permissions of everyRoleandUser Groupassigned to the user. You can also select the specific roles assigned to the user, which enables you to compare available permissions based on the roles selected. This can help you understand how the role permissions for a particular user are built. For example, if you need to isolate for a specific component, the permissions provided by a particularRoleorUser Group.
- Update User Roleto save your changes to the user role.
- Deactivate a user.Locate the user you want to deactivate, right-click, and selectDeactivate User.You cannot deactivate a user that has an Account Admin role.
- Remove a role assigned to a user.
- Locate the user you want to remove the role from, right-click, and selectRemove User Role.
- ClickRemove.You cannot remove a user that has an Account Admin role.
- Designate a user as hidden.Locate the user you want to hide, right-click, and selectHide User. When a user is designated as hidden, the user will no longer be displayed in theUserstable when the table is configured toShow User Subset(default configuration). This is useful, for example, when you have users, who are not related toCortexXDRand will not be designated with aCortexXDRrole, such as CSP Super Users, and you want to hide them from the list.
- Delete a Single Sign-on (SSO) user.
- Locate the SSO user you want to delete, right-click, and selectDelete SSO User.
- ClickDelete.
- Copy text to clipboardto copy text from a specific row field in the row of a user.
- Copy entire rowto copy the text from all the fields in a row of a user.
- Manage User Scope
