Manage User Roles

Depending on your organization’s user role policy, you can assign and manage the roles and permissions of any particular user of Cortex® XDR™.
Role-based access control (RBAC) enables you to manage roles or specific permissions, and assign access rights to administrative users in the following areas in Cortex XDR, where the role options to configure change slightly depending on where you access these RBAC settings.
  • Cortex XDR Gateway
    —You can manage roles and permissions for a single tenant or a number of tenants at the same time using the
    Permission Management
    console (
    Cortex XDR Gateway
    Permission Management
    ). The Permission Management console is divided into two subcategories,
    Permissions
    and
    Roles
    .
  • Cortex XDR Access Management
    —You can manage roles for a specific tenant only using the
    Access Management
    console (
    Settings ( )
    Configurations
    Access Management
    ).
    In addition, you can also set manage user access permissions for the various XQL datasets as part of managing roles.
    The Access Management console is divided into two subcategories,
    Users
    and
    Roles
    .
You can manage roles for all Cortex XDR apps and services. By assigning roles, you enforce the separation of viewing access and initiating actions among functional or regional areas of your organization. Cortex XDR provides a number of predefined Palo Alto Networks roles to assign access rights to Cortex XDR users. For more information, see Predefined User Roles for Cortex® XDR™.
To create and assign roles, you must first activate your Cortex XDR tenant and be assigned a XDR Account Admin role in the Cortex XDR Gateway.

Recommended For You