End-of-Life (EoL)

Roles in Cortex XSOAR

Describes the roles and permissions in Cortex XSOAR.
A role is a set of permissions that determine which actions and resources users within that role are granted access in Cortex XSOAR. Users are assigned to at least one role, depending on their required level of access.
Roles
Cortex XSOAR has the following assigned roles:
Role
Default Permissions
Administrator
Read/Write permissions for all components and access to all pages.
Analyst
Mix of Read and Read/Write permissions for all components and access to all pages.
Read-Only
Read permissions for all components and access to all pages.
You can add as many roles as you require, by clicking
New
. To create a new role, see create a new role. Follow the same steps when editing a role. When defining a new role, you can add permissions, SAML and AD Roles, defining shift periods and so on.
Permissions
You can view and change the following permission levels as required:
Permission
Description
None
No access to the specified component.
Read
Can view but not edit the specified component.
Read/Write
Can view and edit the specified component.
If you want to manage shift periods for users, including who is on call and to whom to assign, you can define a role for a specific shift period and then assign that shift to a user.

Recommended For You